Tiffany Carey
@tiffanycarey
Seasoned DoD cybersecurity professional specializing in risk management and A&A.
United StatesWhat I'm looking for
I am a cybersecurity professional with over 10 years of Department of Defense experience focused on information assurance, risk management, and enterprise security oversight. I lead Assessment and Authorization (A&A) activities, develop System Security Plans, and drive disaster recovery and contingency planning to maintain mission readiness.
I have a strong record of conducting risk and vulnerability assessments, security audits, and IV&V to ensure RMF compliance and recommend effective mitigation strategies. I provide technical guidance on enterprise-level security issues, integrate security across the system development lifecycle, and track remediation of audit findings to acceptable risk closure.
I combine project management, policy development, and team leadership to align cybersecurity activities with federal regulations and organizational objectives. My background includes hands-on systems administration, STIG validation, and educating stakeholders through security awareness initiatives.
Experience
Work history, roles, and key accomplishments
Lead Information System Security Officer
Department of Defense
Sep 2021 - Present (4 years 3 months)
Serve as ISSO administering security programs, coordinating A&A activities, and developing SSPs and disaster recovery plans to ensure RMF compliance and reduce enterprise risk across DoD systems.
Cybersecurity Engineer III
Simventions, Inc
Jun 2015 - Sep 2021 (6 years 3 months)
Conducted IV&V assessments and supported RMF compliance by preparing security test plans, vulnerability assessments, and accreditation documentation to validate federal cybersecurity controls.
MCEN Migration Compliance SME
SAIC
Dec 2014 - Jun 2015 (6 months)
Maintained and validated system documentation and provided compliance and QA support for accreditation actions and risk tracking during MCEN migration activities.
Systems Administrator
The Tatitlek Corporation
Apr 2014 - Dec 2014 (8 months)
Performed system hardening, STIG validation, vulnerability scanning, and administered Windows/UNIX/Linux systems to meet DoD information assurance requirements.
Education
Degrees, certifications, and relevant coursework
UWUniversity of Mary Washington
Business Certification, Project Management
2022 - 2023
Completed a Business Certification with a major in Project Management from October 2022 to July 2023.
UCUniversity of Maryland Global Campus
Master of Science, Cybersecurity Technology
2018 - 2020
Earned a Master of Science in Cybersecurity Technology between October 2018 and March 2020.
RURadford University
Bachelor of Business Administration, Information Systems
1999 - 2003
Completed a Bachelor of Business Administration with a major in Information Systems from August 1999 to May 2003.
Availability
Location
United StatesAuthorized to work in
Job categories
Skills
Interested in hiring Tiffany?
You can contact Tiffany and 90k+ other talented remote workers on Himalayas.
Message TiffanyFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
