Download PDF

Work experience

May 2016Present

Information Technology Security Manager, MSIA-UPE, CISSP

City of Port St. Lucie

Work is complex and of considerable difficulty and includes the application of technical knowledge and skills in maintaining the hardware and software used in protecting information and its infrastructure from external or internal threats and to assure compliance with statutory and regulatory requirements regarding information access and security through the establishment and implementation of policies and procedures and employee training. Interacts with peers in the Infrastructure, Applications and GIS Divisions as well as with City Administration to both share the security vision with those individuals and to solicit their involvement in achieving higher levels of enterprise security through information sharing and cooperation through a Computer Security Incident Response Team (CSIRT).  Position reports directly to the MIS Director and works in a collaborative manner with the MIS Director to design, create and maintain the organizational enterprise security program. Reviews work of staff and that of contractors.  Supervisor:  Director of Management Information Systems, Bill Jones.

Information Security Risk Management Framework
IT Policies and Procedures
Information Assurance & Cyber Security
IT & User Security, Education, Training & Awareness (SETA)
Computer Security Incident Response Team Manager (CSIRTM)

Feb 2016May 2016

Information Technology Security Manager, MSIA-UPE, CISSP

Town of  Davie

The Information Security Manager performs two core functions for the enterprise.  The first is overseeing the operations of the enterprise's security solutions through management of the organization's security analysts.  The second is establishing an enterprise security stance through policy, architecture and training processes.  Secondary tasks will include the selection of appropriate security solutions, and oversight o any vulnerability audits and assessments.  The Information Security Manager is expected to interface with peers in the Infrastructure, Applications and GIS divisions as well as with the leaders of the business units to both share the corporate security vision with those individuals and to solicit their involvement in achieving higher levels of enterprise security through information sharing and co-operation.  The Information Security Manager reports directly to the Information Technology Director and works in a collaborative manner with the IT Director to design, create, and maintain the organizational enterprise security program.  Supervisor:  Nelson Martinez, Director of Information Technology.

Information Security Risk Management Framework
IT Policies and Procedures
Information Assurance & Cyber Security

Jan 2015Jan 2016

Interim MIS Director, MSIA-UPE, CISSP

City of Fort Pierce

Highly responsible administrative and managerial work that includes process evaluation and design, vendor coordination and management systems evaluation, systems design, programming, computer operations, data image, and voice networks, technical support and end-user training and support. Plan, organizes, directs and coordinates all aspects of information services and technology, and identifies appropriate solutions through the application of information services and technology. Managed a staff of 4 MIS professionals while managing a City MIS budget of $1.0M. Position reports directly to the office of the City Manager.

Department Responsibilities

The Management Information Systems (MIS) Department is an internal service department that is responsible for providing technical and informational support to all city departments. MIS is responsible for providing enterprise-wide communication, information management and other technological services that support the City's core business operations and delivery of services to the residents of Fort Pierce. The department supports voice and data needs for over 250 users at 7 locations and maintains more that 20 servers and a mid-range computer system.  Supervisor:  Nick Mimms, City Manager.

The Management Information Systems department support areas include the following services:

Application Software
AS / 400 Mid-range Computer
Cyber Security
Database management
Email management
File maintenance
Financial and community development applications
Firewalls, Routers, and Switches
Help desk
Information Assurance
Internet access
IT Policies and Procedures
Operations System Software
System Analysis
VOIP Telephone System Management
WAN/LAN Management

Jul 1998Dec 2014

Unified Network Administator - CISSP & Security+

City of Fort Pierce

Direct backup to the Director of Management Information Systems (MIS) for all City-wide data and voice information system operations while being directly held responsible for the continuous operational stability, efficiency, and security of the City’s enterprise-wide information systems.  Supervisor:  Marjorie B. Gaskin, Director of MIS.

Unified Network Administrator professional experience and duties as they pertain to the 10 domains of knowledge of the CISSP CBK.  Please  also consider the Comptia Security+ and Microsoft Certified System Administrator (MCSA) certification  as additional information assurance experience.

Access Control – Administration of an enterprise Microsoft domain-based network environment with an IBM Power 8 Midrange computer by managing an active directory and AS400 object-oriented environment consisting of users, groups, and organizational units to enforce via group policies (GPO) access controls to limit access to sensitive information at the domain level of the network through the concept of least privilege.Duration: twelve plus years of experience.

Telecommunications and Network Security – The City’s enterprise network operates and is managed through the Network Administrator within an air-gap defense network environment provided by a managed Internet Service Provider (ISP).Therein, the Network Administrator coordinates with the network operations center of the managed ISP provider to collaborate and mitigate known threats to the City’s via QRADAR (SIEM tool) and monitor WAN/LAN bandwidth metrics via other WAN applications such as eHealth.The Network Administrator also monitors and manages the municipal owned gateway firewalls, routers, and switches used over the managed ISP throughout 7 sites total which are provided WAN connectivity within a state-wide air-gap defense network provided by the managed ISP provider.TCP/IP is the primary data and voice communications protocol used throughout the City’s network as managed by the Network Administrator and additional measures such as employing the use of self-signed certificates for network devices to communicate via encrypted channels such as HTTPS and/or SSL is employed.In addition, site to site VPN’s are managed between the routers of the managed ISP provider and the routers of the City’s enterprise network via the Network Administrator to encrypt traffic end to end.

Telecommunications and Network Security (continued) – All external mobile device and computer connections can only access the City’s enterprise network through the use of the aforementioned site to site VPN or client to LAN VPN’s through a Cisco VPN client or Juniper SSL VPN to encrypt TCP/IP traffic end to end between the remote node and the City’s enterprise network for all TCP/IP data communications. The Network Administrator has also configured layer 2 and layer 3 TCP/IP measures to help prevent MAC Flooding, VLAN Hopping for VOIP and NAT/PAT to help prevent network foot printing. Duration:ten plus years of experience.

Information Security Governance and Risk Management – The Network Administrator has documented, trained users, and helped to implement a City-wide PCI-DSS policy for PCI-DSS compliance impacting all e-commerce transactions. The Network Administrator has also helped to document, update, and implement an Internet Access Telecommunications policy, an E-mail Usage and Retention policy, and a City-wide business continuity and disaster recovery policy with procedures and user training.The Network Administrator helps to ensure operational PCI-DSS compliance and works with the Finance Department to recertify via SAQ and quarterly technological tests for PCI-DSS compliance on an annualized basis.Duration:ten plus years of experience.

Business Continuity and Disaster Recovery Planning – The Network Administrator setup a disaster recovery solution known as NOMAX for the IBM Power 8 Midrange Computer which helps meets the requirements of the enterprise-wide business continuity and disaster recovery plan as well as helped to ensure the reliable processes of backing up critical systems such as Microsoft domain controllers, applications servers, and data storage devices via the traditional “grandfather” system of tape backups as a complimentary and redundant method to the NOMAX disaster recovery solution to help ensure the continuity of municipal operations and/or to help recover in the event of a human-factor, technological, and/or natural disaster.Duration: eight plus years of experience.

Physical (Environmental) Security – The Network Administrator monitors and manages Facility Commander which is a server, database, hardware, and software/application based physical building security solution for City Hall.The Facility Commander unified command and control physical access control security solution employs PTZ, Infrared, and motion cameras for digital video surveillance and recording as well as integrated access control features such as single and dual factor authentication via an employee photo identification badge and RFID chip to access sensitive areas along with biometric and keypad options for dual factor authentication to access highly sensitive locations.Electronic door strikes and electronic magnetic locks are deployed with RFID readers to enforce access control with the support of video surveillance within a unified solution managed by the Network Administrator.Duration:6 plus years of experience.

Digital Forensic & Network Stack Experience

Connectivity & Hardware: (Layer 4) Sonicwall NSA 3600 & 2400 firewalls, Sonicwall TZ-200 firewalls, Edgemarc 4550, (Layer 4,3) Cisco 3925 and 3825 HSEC, Cisco 2901, 2621XM, and 2621XM HSEC, Cisco 1900, 1800, 1700 series, Cisco 800 and 800W series, Cisco Catalyst Series Switches, Hewlett Packard 5412zl PoE network core layer (3/2 switches), Hewlett Packard 2910al PoE (layer 3/2 switches) , IBM Power 8, IBM Blade Center S, DNS Servers, DHCP Servers, Web Servers, Ethernet, Fast Ethernet, Gigabyte Ethernet, single and multimode fiber, WAN, LAN, TCP/IP, and RAID systems.

Cisco Technologies: Cisco 3900 & 3800 series, Cisco 2900, 2800, & 2600 series, Cisco 1900, 1800, and 1700 series, Cisco 800 and 800W series, Cisco Catalyst 3000, and Cisco Catalyst 3100.

Network Technologies: CDP (disable recommended), Frame-relay, PPP, Access Control List (ACL), Network Address Translation (NAT), Port Address Translation (PAT), RIPng, RIP, RIPv2, OSPF, EIGRP SNMP, SNMPv3, SMTP, ARP, TCP, UDP, Static Routing, Stub Routing, VLAN Trunking, VLAN, VTP, STP, Etherchannel, and Portfast.

Peripheral Technologies: AAA, IPS/IDS, TACACS+, RADIUS, SSH, VACL, PVLAN, Firewall, VPN, Tunneling,VoIP, IP Phone, Catalyst, CUCM, QoS, PoE, CME, CUE, Port Security, MAC Address Filtering.

Digital Forensic Tools: Niksun, Juniper Security Threat Manager SIEM, IBM QRADAR SIEM, Wireshark, Solarwinds, Sonicwall, PUTTY, Gargoyle, Maltego, WinHex, FTK Tools, DD, Encase, & Cisco SDM.

Desktop Technologies: Polycom VOIP, Windows 8, 7, Windows 2012, 2008, 2003 Servers, IBM V7R1M0 Client Access, Microsoft AD, Lotus Notes Domino 9.0, and Microsoft Visio and Microsoft Office.

Oct 2012Present

Adjunct Instructor - Cyber Security, CISSP

Indian River State College

Indian River State College, Fort Pierce, FL USA, 2012 – Present. Certified adjunct instructor designated to teach undergraduate cyber security courses such ISM 3321 and ISM 4323, I also serve as a subject matter expert (SME) through IRSC via the Quality Matters (QM) Program for ISM 4323 - Information Security Policy Administration and for ISM 3321 Information Security Essentials.. Supervisor: Jose Farinos, Vice President & Dean of  Advanced Technology.

ISM 3321 – Information Security Essentials

ISM 4323 - Information Security Policy Administration

ISM 3321 Course Description

The management of information security problems is covered including attack methods; detection and prevention techniques, cryptography, firewalls and intrusion detection systems; security policies and risk management; and incident response.

ISM 4323 Course Description

The management of information security provides the foundation for understanding the key issues associated with protecting an organization’s digital information assets through the people, policies and procedures, processes, and technology the organization employ’s to help the organization develop a cost-effective, efficient, and compliance-oriented information security operational environment. Appropriate measurement, governance, and reporting methods will also be discussed which assist organizational management in making better information security governance and IT risk management decisions. Students will be exposed to the spectrum of management information security activities, methodologies, laws, policies and procedures, IT risk management, and information security governance.

Jun 1996Present

Owner/Information Assurance - MCSA & Security +, CISSP

Megabyte Concepts

Managed and setup a 100,000 square foot brand new doctor’s office building with the entire network wired and wireless capacity required. Coordinated and setup WAN/LAN data and voice networks with At&t as the ISP while providing secure VOIP telephone service for 8 different doctor’s offices within the primary location utilizing the same enterprise VOIP telephone system.Setup 8 separate data networks with layer 4 site to site VPN access to connect 8 different satellite offices to their respective office within the new primary location within a tri-county area.Setup internal LAN environment with mobile, desktop, and server network nodes with appropriate security and compliance measures for all software and hardware employed to remain HIPPA and PCI-DSS compliant regarding medical billing and electronic payments, medical data, and medical software and/or hardware while medical information considering whether medical information was in transit across the VPN, sent to the insurance for health claims processing and billing, or in storage at the primary and/or respective doctor’s satellite offices.

Jun 1990Jun 1996

Network Administrator - CNA 3.1x

M.A. Hanna, Inc./PolyOne Corporation

Administered and managed a 25 node Novell 3.1x network with remote access to an AS/400 via an IBM controller at a Fortune 500 polymer research and light manufacturing technological center.


Sep 2010Jun 2012

Master of Science with Honors - Information Assurance

Norwich University

Achieved a 4.0 GPA and graduated with Honors!  Upsilon Pi Epsilon (UPE) - International Honor Society for the Computing and Information Disciplines (Lifetime Member) - June 2012, Noriwich University Alumni. Achieved CISSP certification.

  • Computer Forensic Investigations (GI551L)
  • Computer Security Incident Response Team Management (CSIRTM) (GI554A)
  • Information Assurance Management and Analytics (GI542L)
  • Human Factors and Managing Risk (GI532A)
  • Information Assurance Technology (GI522L)
  • Foundations and Historical Underpinnings of Information Assurance (GI512A)
Jun 2001May 2007

Bachelor of Arts - Management Information Systems - Security Track

Florida Atlantic University

Information Technology and Operations Management (ITOM) - Florida Atlantic University (FAU) - Distinguished Alumnus - May 2012. Achieved a 3.157 GPA with a concentation in computer forensics, Florida Atlantic University Alumni.

  • Computer Forensics (ISM4324)
  • Security Management (ISM4323)
  • Information System Security (ISM4320)
  • Business Data Communications (ISM4220)
  • Database Management Systems (ISM4212)
  • Advanced Systems Analysis and Design (ISM4133)
  • Beginning Business Programming (C++) (ISM3230)
  • Management Information Systems (ISM3011)
  • Certified Novell Administrator 3.1x (10 Week Course at FAU)
Aug 2002Dec 2006

Cisco Network Academy - CCNA & MCSA Tracks

Indian River State College

Achieved a 3.25 GPA. Completed the Cisco Network Academy (CCNA) track and Microsoft Certified System Administrator (MCSA) track to become Comptia Security + and MCSA certified.

  • Network Security (CTS2310)
  • Cisco Project (CEN2529 (CCNA4))
  • Advanced Router Technology (CEN2528 (CCNA3))
  • Cisco Router Technology (CEN2527 (CCNA2))
  • Networking Essentials (CEN1283 (CCNA1))
  • Administrator WIN2K Director (CEN2305)
  • Implement Windows 2000 Server (CEN2320)
  • Design WIN2K Director (CEN2321)
  • Fundamentals of Computer Applications (CGS1003)
Jun 1990May 1995

Associate of Arts - Liberal Arts

Broward Community College

Broward Community College Alumni, Completed Novell Network 3.1X Administrator course to become a Certified Novell Administrator (CNA) and Achieved a 3.0 GPA. Future Business Leaders of America - Phi Beta Lamda member (FBLA - PBL) FBLA District Certificate Award (3rd Place Economics).


References and other certifications are available upon request


World Travel, Computer Technology, Poetry, Philosophy, Golf, Billiards, Volleyball, Antique Trucks, Martial Arts, and Exercise


Presented above and below is the current summary of my Information Technology (IT) and Information Assurance (IA) related knowledge, education, and experience.


To become a C-level information technology and assurance manager or CISO .


Aug 2012Aug 2018

Certified Information Systems Security Professional (CISSP)


ISC2 ID: 425088

  • Computer Forensic Investigations (GI551L)
  • Computer Security Incident Response Team Management (CSIRTM) (GI554A)
  • Information Assurance Management and Analytics (GI542L)
  • Human Factors and Managing Risk (GI532A)
  • Information Assurance Technology (GI522L)
  • Foundations and Historical Underpinnings of Information Assurance (GI512A)
May 2016May 2017

Kevin Mitnick Security Awareness Training - 2016


IT staff and end user cyber security training

Mar 2016Mar 2018

Criminal Justice Information System (CJIS) - Security and Awareness Training (Town of Davie)

Federal Bureau of Investigation (FBI)

Level 3 - Information Technology Security

May 2014May 2017

CyberAces Virtual Assessment 1.0

SANS Institute
SANS Institute, License ID 1900027
Dec 2006Dec 2009

Comptia Security +

Comptia Corporation

License CompTIA Career ID# COMP10648179

  • Network Security (CTS2310)
Jun 2003Jun 2006

Microsoft Certified Systems Administrator (MCSA)

Microsoft Corporation

Microsoft, License MCP ID # 2981960

  • Administrator WIN2K Director (CEN2305)
  • Implement Windows 2000 Server (CEN2320)
  • Design WIN2K Director (CEN2321)
Jun 2002Jun 2006

CCNA 1 - 4

Cisco Network Academy & Indian River State College

Cisco Router Configuration and Management for enterprise networks.

  • Network Security (CTS2310)
  • Cisco Project (CEN2529 (CCNA4))
  • Advanced Router Technology (CEN2528 (CCNA3))
  • Cisco Router Technology (CEN2527 (CCNA2))
May 2003May 2006

Lotus Notes ND6 - Administration


IBM - ND6:  Building and Managing the Enterprise

May 2014Nov 2014

Applying the QM Rubric: Using 2011 - 2013 Rubric

Quality Matters Program
Quality Matters Program, License (APPQMR)
Oct 2014Nov 2016

QM Rubric Update 2014: Using the Rubric 2014 - 2016

Quality Matters Program
QM Quality Matters, License 5th. Edition - 2014 - 2016
Oct 2014Present

LeaderMetrics (Leadership, Stewardship, & Governance)

What key decision-makers need to know when serving in a critical leadership role. Completed the intensive coursework associated with LeaderMetrics and was awarded the 3ethos challenge coin for completing the program regarding the correlated concepts of Leadership, Stewardship, & Governance.
Nov 2014Present

St. Lucie Leadership Class XXXII

St. Lucie Chamber of Commerce

Participants agree to a two year commitment with the St. Lucie County Chamber of Commerce.First, they undertake an eleven month program designed to increase their individual and community leadership skills. The class spends one day a month studying specific aspects of the community, such as education, area government, local history, economic development, health and human services, the environment, cultural awareness and quality of life issues. Upon graduation participants are asked to service on a Chamber committee in order to apply their community knowledge and leadership skills for the betterment of St. Lucie County. If you are interested in experiencing a year long adventure and learning about your community in ways you never imagined, please contact the Chamber of Commerce Foundation for more information. This first year leads to additional time in your community as you become active with the Chamber of Commerce and its committees and events.

Jun 2012Present

Upsilon Pi Epsilon (UPE) - Lifetime Member

Norwich University Chapter - License 2012052814NORWC

Mission Statement

The mission of Upsilon Pi Epsilon is to recognize academic excellence at both the undergraduate and graduate levels in the Computing and Information Disciplines.

The Association will accomplish this mission through programs that:

Endorsements and Affiliation

Upsilon Pi Epsilon is the first and only, existing international honor society in the Computing and Information Disciplines. It has received endorsements from the two largest computer organizations in the world, the Association for Computing Machinery (ACM) and the IEEE Computer Society (IEEE-CS).

UPE is a member of the Association of College Honor Societies (ACHS).

Upsilon Pi Epsilon