Lamesha Dickerson

Led end-to-end security control assessments (SCAs) aligned to NIST SP 800-53 and RMF, achieving a 100% ATO compliance rate. Developed SARs and remediation plans that reduced time-to-ATO by 30% and cut POA&M backlogs by 45%.

Engineered and maintained enterprise software packages, security updates, and OS images using Microsoft MECM/SCCM and Intune across a large federal environment. Built PowerShell automation for patch validation and compliance reporting, supporting timely remediation and audit readiness with measurable reductions in findings.

Implemented NIST-aligned security controls across the system lifecycle and applied DISA STIGs to harden systems and validate compliance for RMF assessments. Maintained security documentation (SSPs and POA&Ms) and led vulnerability mitigation actions, including rapid Log4j remediation that reduced organizational risk exposure by 90%.

Spearheaded enterprise vulnerability management, reducing organizational risk by 70% through proactive prioritization and mitigation. Directed patching with SCCM/WSUS to achieve 95%+ monthly compliance and reduced unpatched critical vulnerabilities by 80%, while enforcing DISA STIG compliance across 1,500+ servers and maintaining FISMA/NIST alignment with zero audit findings.

Led RMF documentation initiatives to support federal ATO compliance across multiple projects, achieving a 100% compliance rate. Reviewed and evaluated A&A package components under NIST guidance and maintained SOX ITGC adherence, improving STIG compliance processes and supporting audit-ready remediation workflows.

Applied DISA STIGs to resolve security vulnerabilities and developed security policies and procedures to ensure systems remained compliant. Supported SOX and ISO 27001 audits, reviewed FISMA A&A packages, and monitored secured networks, identifying 30+ network intrusions that threatened internal systems.