Christopher Schooley

Christopher Schooley

Education

Education

Work History

Work History
Oct 2007 - Present

Sr. Security Engineer

http://www.mslco.com

Perform security analysis and testing for computing platforms in weapons system. Develop security lockdown and remediation scripts, and documentation. Perfrom C&A documentation and process assistance (DIACAP)

  • Implemented a scripted, automated product patch and security configuration process to patch various Windows systems

  • Performed vulnerability assessments using eEye Retina, DISA Gold Disk and a variety of DISA STIG checklists

  • Provided training and support to enable product engineer and test teams to perform security checks for systems in development

May 2001 - Aug 2004

Group Manager, Information Security

McNeil Technologies

Manage a group that provides security services to the Air Force Space Command’s Network operations and Security Center; Services include Risk Assessments, Security Assessments, C&Documentation, and technical analysis of vulnerabilities and their proposed remediation

  •  Developed audit objectives and procedures to perform a substantive test of password strength controls. Weak passwords reduced by %97
  • Applied quality management practices to vulnerability remediation process. Repeat vulnerabilities eliminated, first time vulnerabilities reduced by %90

May 2001 - Aug 2004

Telecommunications Manager

RAND

Manage telecommunications staff (PBX techs, WAN engineers, telephone/computer operators, voice system engineers), and projects for major telecommunications deployments

  • Engaged audit firm to analyze total telecom spend, billing, actual use to reduce TCO of telecommunications infrastructure; First year savings $50,000, additional savings of $11,000 per year for 5 years 
  • Designed and deployed IP-based video conferencing solution to replaced leased lines. Annual cost savings of $40,000 
  • Upgraded and maintained network infrastructure (Cisco PIX, 7500, 4000, C3500, 3600, VPN 3000, C2900 & C2800, Check Point FW-1 NG)

Certifications

Certifications

NSA IAM (INFOSEC Assessment Methodology)

National Security Agency INFOSEC Assurance Training and Rating Program

NSA IEM (INFOSEC Evaluation Methodology)

National Security Agency INFOSEC Assurance Training and Rating Program
Feb 2002 - Present

CISSP #44123 (Certified Information Systems Security Professional)

ISC2
Nov 2006 - Present

CISA #0651933 (Certified Information Systems Auditor)

ISACA

References

References

Stephanie Fletcher

“Chris is a highly professional and skilled Sr. Security Engineer. His outstanding technical skills along with his expert knowledge in implementation of policy and procedures make him a valuable and flexible member of any security department. He works well with others as well as individually, always maintaining a pleasant personality. I would highly recommend Chris."

Wesley Brown

“Chris is one of the most diverse IT professionals I know. He is the type of person that you can bring an idea to and he will get extremely excited about it. His enthusiasm does not stop there though. He can usually bring more to the table then you ever imagined was possible with your idea. His excitement is contagious as he branches out your idea and infuses it with more innovation. I hope to work with Chris again one day. He constantly works toward improvement in technologies and processes.”

Charles Moody

"Chris is a very excellent systems security expert. He values the balance of provided needed security with user functionality. Chris is fun to work with and explains necessary security methods very well. I would recommend Chris to any institution requiring an excellent security engineer."

Top Secret/SCI

DoD