SlideShare a Scribd company logo

Cohen Boeing Supp

Download as PPT, PDF
R
Roberta Cohen, CISSP
1 of 17
Roberta Cohen, CISSPRoberta Cohen, CISSP Supplemental Experience InformationSupplemental Experience Information The Boeing CompanyThe Boeing Company 2006-20142006-2014 While at Boeing, she applied the breadth of her experience within theWhile at Boeing, she applied the breadth of her experience within the information assurance (IA) field by leading certification and risk managementinformation assurance (IA) field by leading certification and risk management programs (NIST, FISMA, DIACAP, NISPOM), cyber research andprograms (NIST, FISMA, DIACAP, NISPOM), cyber research and development, strategic planning initiatives, and proposal developmentdevelopment, strategic planning initiatives, and proposal development activities. Ms. Cohen has earned the position of Technical Lead Engineer byactivities. Ms. Cohen has earned the position of Technical Lead Engineer by demonstrating her ability to incorporate systems engineering and projectdemonstrating her ability to incorporate systems engineering and project management practices to effectively plan, execute, and control, cost and riskmanagement practices to effectively plan, execute, and control, cost and risk within complex, high assurance environments such as: Global Missile Defense -within complex, high assurance environments such as: Global Missile Defense - Global Communications Network, Joint Tactical Radio Systems, BoeingGlobal Communications Network, Joint Tactical Radio Systems, Boeing Enterprise Networks, and Future Combat Systems.Enterprise Networks, and Future Combat Systems.
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20142 Roberta Cohen, CISSPRoberta Cohen, CISSP Positions HeldPositions Held The Boeing CompanyThe Boeing Company 1.1. Operations & Security LeadOperations & Security Lead PhantomNet ProgramPhantomNet Program 2.2. Security LeadSecurity Lead Boeing Global Enterprise LabNet ProgramBoeing Global Enterprise LabNet Program 3.3. Lead Systems Security EngineerLead Systems Security Engineer Command & Control Enterprise ServicesCommand & Control Enterprise Services 4.4. Project LeadProject Lead Global Missile Defense Communications Network (GCN)Global Missile Defense Communications Network (GCN) 5.5. Information Assurance LeadInformation Assurance Lead GCN Long Haul Communications Systems Manager (LSM)GCN Long Haul Communications Systems Manager (LSM) 6.6. Information Assurance Subject Matter ExpertInformation Assurance Subject Matter Expert GCN Systems Engineering Integration & Test TeamGCN Systems Engineering Integration & Test Team 7.7. Lead IA Subject Matter ExpertLead IA Subject Matter Expert Boeing Defense Systems, Data Center Design Reference Model ProgramBoeing Defense Systems, Data Center Design Reference Model Program 8.8. DIACAP C&A LeadDIACAP C&A Lead Joint Tactical Radio Systems, Ground Mobile Radio ProgramJoint Tactical Radio Systems, Ground Mobile Radio Program
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20143 Project 1 of 8Project 1 of 8 Operations & Security LeadOperations & Security Lead October 2013 to December 2014October 2013 to December 2014 Phantom Works, PhantomNet ProgramPhantom Works, PhantomNet Program Project DescriptionProject Description PhantomNet was a diversified, multi-layer environment consisting of differingPhantomNet was a diversified, multi-layer environment consisting of differing virtual systems representing various permeations of operating systems, andvirtual systems representing various permeations of operating systems, and application configurations, to which Boeing participants from across theapplication configurations, to which Boeing participants from across the enterprise could hone cyber security knowledge and capability. Theenterprise could hone cyber security knowledge and capability. The environment was supported by a team of senior information assurance andenvironment was supported by a team of senior information assurance and network engineering specialistsnetwork engineering specialists Position SummaryPosition Summary Led engineering team in support of network focused security monitoring andLed engineering team in support of network focused security monitoring and cyber technology research and development program oriented toward increasingcyber technology research and development program oriented toward increasing the Boeing competitive edge in cyber technologythe Boeing competitive edge in cyber technology
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20144 Project 1 of 8Project 1 of 8 Operations & Security LeadOperations & Security Lead October 2013 to December 2014October 2013 to December 2014 PhantomNet ProgramPhantomNet Program MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Coordinated and obtained Boeing enterprise IT and Legal approvalsCoordinated and obtained Boeing enterprise IT and Legal approvals necessary to support unique security attributes of the PhantomNetnecessary to support unique security attributes of the PhantomNet environment within the Boeing Enterpriseenvironment within the Boeing Enterprise Created process and functionality to incorporate the ability to capture andCreated process and functionality to incorporate the ability to capture and measure, knowledge gained within company to increase Boeingmeasure, knowledge gained within company to increase Boeing competitive edge in cyber technologycompetitive edge in cyber technology Provided monitoring and oversight of network security systems, siteProvided monitoring and oversight of network security systems, site installation, and performanceinstallation, and performance Assisted in the first round virtual environment build-out in support ofAssisted in the first round virtual environment build-out in support of experimental penetration testingexperimental penetration testing Mr. Kerry Hu, Sr. ManagerMr. Kerry Hu, Sr. Manager 206.544.0950206.544.0950
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20145 Project 2 of 8Project 2 of 8 Security LeadSecurity Lead December 2011 to October 2013December 2011 to October 2013 Boeing Enterprise LabNet ProgramBoeing Enterprise LabNet Program Program DetailsProgram Details The LabNet network is a specialized network designed to segregate BoeingThe LabNet network is a specialized network designed to segregate Boeing proprietary research and development, and/or sensitive contract supportproprietary research and development, and/or sensitive contract support environments which require robust security capability. The network isenvironments which require robust security capability. The network is leveraged throughout the corporation, and is supported by a specialized seniorleveraged throughout the corporation, and is supported by a specialized senior group of engineering staffgroup of engineering staff Position SummaryPosition Summary Provided comprehensive security oversight in support of the LabNet program,Provided comprehensive security oversight in support of the LabNet program, to include: security architecture development, security policy and proceduresto include: security architecture development, security policy and procedures development, network security monitoring and response management, firewalldevelopment, network security monitoring and response management, firewall configuration management, vulnerability testing, and customer interactionconfiguration management, vulnerability testing, and customer interaction
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20146 Project 2 of 8Project 2 of 8 Security LeadSecurity Lead December 2011 to October 2013December 2011 to October 2013 Boeing Enterprise LabNet ProgramBoeing Enterprise LabNet Program MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Developed LabNet wireless policy and procedures for integration ofDeveloped LabNet wireless policy and procedures for integration of proprietary wireless access points throughout Boeing LabNet un-trustedproprietary wireless access points throughout Boeing LabNet un-trusted and trusted environmentsand trusted environments Led research and development of proprietary monitoring capability basedLed research and development of proprietary monitoring capability based upon specific LabNet architecture to assist in the identification of potentialupon specific LabNet architecture to assist in the identification of potential insider threat behaviorinsider threat behavior Designed and established cutting edge security operations center, toDesigned and established cutting edge security operations center, to include tiered network lab environment in support of redundant monitoringinclude tiered network lab environment in support of redundant monitoring capability for international locations, and operational research andcapability for international locations, and operational research and development activitiesdevelopment activities Mr. Kerry Hu, Sr. ManagerMr. Kerry Hu, Sr. Manager 206.544.0950206.544.0950
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20147 Project 3 of 8Project 3 of 8 Lead Systems Security EngineerLead Systems Security Engineer January 2011 to December 2011January 2011 to December 2011 Boeing Command and Control Enterprise Services (C2ES)Boeing Command and Control Enterprise Services (C2ES) Program DescriptionProgram Description C2ES was a research development program in support of defining the utilizationC2ES was a research development program in support of defining the utilization of cloud technology in combination with Service Oriented Architecture (SOA)of cloud technology in combination with Service Oriented Architecture (SOA) technologies as a means to provide the customer with a more efficient means oftechnologies as a means to provide the customer with a more efficient means of processing and storing sensitive dataprocessing and storing sensitive data Position SummaryPosition Summary Led multi-faceted programs in the research, development, and integration ofLed multi-faceted programs in the research, development, and integration of cutting edge information assurance, and risk mitigation technologies withincutting edge information assurance, and risk mitigation technologies within service oriented, virtual, and multi-level Command and Control environmentsservice oriented, virtual, and multi-level Command and Control environments
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20148 Project 3 of 8Project 3 of 8 Lead Systems Security EngineerLead Systems Security Engineer January 2011 to December 2011January 2011 to December 2011 Boeing Command and Control Enterprise Services (C2ES)Boeing Command and Control Enterprise Services (C2ES) MAJOR ACOMPLISHMENTSMAJOR ACOMPLISHMENTS Conceptualized and initiated the use of Agile process and comprehensive engineeringConceptualized and initiated the use of Agile process and comprehensive engineering tools to develop a “Just-in-Time Information Technologies Repository” for thetools to develop a “Just-in-Time Information Technologies Repository” for the development and reuse of system engineered development and design packages,development and reuse of system engineered development and design packages, significantly, reducing initial design costs and deployment time; thus creating a baselinesignificantly, reducing initial design costs and deployment time; thus creating a baseline to support open architecture concepts of reuse, and modularityto support open architecture concepts of reuse, and modularity Associate lead systems engineer for the C2ES Foundry program leveraging virtual cloudAssociate lead systems engineer for the C2ES Foundry program leveraging virtual cloud computing environments to support One Boeing rapid prototyping deployment, andcomputing environments to support One Boeing rapid prototyping deployment, and LEAN 10X initiativesLEAN 10X initiatives Lead Royal Saudi Air Force IA architecture development and product selection forLead Royal Saudi Air Force IA architecture development and product selection for ROM and proposal activities leveraging internationally recognized business driven riskROM and proposal activities leveraging internationally recognized business driven risk management methodologies, and ITAR approved technologiesmanagement methodologies, and ITAR approved technologies Implemented the actualization of comprehensive Agile process planning and initiationImplemented the actualization of comprehensive Agile process planning and initiation through the development of program roadmaps, project, release, and iteration plansthrough the development of program roadmaps, project, release, and iteration plans Completed Boeing Agile Software Process training as Scrum Master, and Project OwnerCompleted Boeing Agile Software Process training as Scrum Master, and Project Owner Responsible for the planning, management, and daily operational activity associatedResponsible for the planning, management, and daily operational activity associated with classified lab environments, and implementation of multi-level technologies e.g.,with classified lab environments, and implementation of multi-level technologies e.g., Data Diode, PAVENet, and eXMeritusData Diode, PAVENet, and eXMeritus Mr. Roy T. Okuno, Sr. Manager 714.372.6996Mr. Roy T. Okuno, Sr. Manager 714.372.6996
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20149 Project 4 of 8Project 4 of 8 Project LeadProject Lead January 2011 to December 2011January 2011 to December 2011 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Security Operations Data Sharing InitiativeSecurity Operations Data Sharing Initiative Project DetailsProject Details This was a small program consisting of a team of about 15 engineers, tasked withThis was a small program consisting of a team of about 15 engineers, tasked with the development, test, and deployment of a web interface to data collected fromthe development, test, and deployment of a web interface to data collected from multiple network management systems, with the goal of providing the GMDmultiple network management systems, with the goal of providing the GMD customer with a single point of reference to critical datacustomer with a single point of reference to critical data Position SummaryPosition Summary Responsible for the design concept, marketing, and development of a webResponsible for the design concept, marketing, and development of a web services interface to receive, process, and display the Defense Informationservices interface to receive, process, and display the Defense Information Systems Agency (DISA) Network Management System (DNMS) performanceSystems Agency (DISA) Network Management System (DNMS) performance data to the GMD Network Operations Center war fighterdata to the GMD Network Operations Center war fighter
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201410 Project 4 of 8Project 4 of 8 Project LeadProject Lead January 2011 to December 2011January 2011 to December 2011 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Security Operations Data Sharing InitiativeSecurity Operations Data Sharing Initiative MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Created a user-friendly, modular approach for support team roles to easily access,Created a user-friendly, modular approach for support team roles to easily access, interpret, implement, and document systems engineering tasks, significantly reducinginterpret, implement, and document systems engineering tasks, significantly reducing overall production time, assuring design linkage to requirements, and enhancing a teamoverall production time, assuring design linkage to requirements, and enhancing a team atmosphere by encouraging close interactions and timely responseatmosphere by encouraging close interactions and timely response Developed a strategic phased approach to increase the usability, definition and role ofDeveloped a strategic phased approach to increase the usability, definition and role of the DNMS within the GMD operational environmentthe DNMS within the GMD operational environment Created an architecture which addressed and defined lower requirements, and designCreated an architecture which addressed and defined lower requirements, and design details to assure requirement verification and customer satisfactiondetails to assure requirement verification and customer satisfaction Leveraged experience with tools such as DOORS, MS SharePoint, and Rhapsody toLeveraged experience with tools such as DOORS, MS SharePoint, and Rhapsody to establish a new generation of systems engineering methodology for future GCNestablish a new generation of systems engineering methodology for future GCN programsprograms Maintained balance and positive interactions within a multifaceted customer baseMaintained balance and positive interactions within a multifaceted customer base whilst meeting the needs of Global Missile Defense operational objectiveswhilst meeting the needs of Global Missile Defense operational objectives Mr. Phillip Thomaschima, Manager 314.563.5344Mr. Phillip Thomaschima, Manager 314.563.5344
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201411 Project 6 of 8Project 6 of 8 Program IA LeadProgram IA Lead August 2009 to December 2011August 2009 to December 2011 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Long Haul Communications Systems Manager (LSM)Long Haul Communications Systems Manager (LSM) Program DescriptionProgram Description The GCN LSM was a complex, multi-platform network management systemThe GCN LSM was a complex, multi-platform network management system developed to meet the stringent security monitoring and response mechanismsdeveloped to meet the stringent security monitoring and response mechanisms of Ground Missile Defense (GMD) Long Haul Communications Networkof Ground Missile Defense (GMD) Long Haul Communications Network (GCN)(GCN) Position SummaryPosition Summary Led a diverse team of engineers (7) in the application and analysis of detailedLed a diverse team of engineers (7) in the application and analysis of detailed risk assessments and design recommendations in accordance with evolvingrisk assessments and design recommendations in accordance with evolving threat data, system design changes, POA&M, existing certificationthreat data, system design changes, POA&M, existing certification requirements, and DISA Security Technical Implementation Guides (STIGs)requirements, and DISA Security Technical Implementation Guides (STIGs)
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201412 Project 6 of 8Project 6 of 8 Program IA LeadProgram IA Lead August 2009 to December 2011August 2009 to December 2011 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Long Haul Communications Systems Manager (LSM)Long Haul Communications Systems Manager (LSM) MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Developed a risk-based evaluation and deployment process for the detailedDeveloped a risk-based evaluation and deployment process for the detailed implementation of DISA STIGs and mitigation activity associated withimplementation of DISA STIGs and mitigation activity associated with various vulnerability scanning toolsvarious vulnerability scanning tools Mentored engineering staff as to the use of DoD scanning tools, resultsMentored engineering staff as to the use of DoD scanning tools, results evaluation, and STIG application within complex systems, resulting in aevaluation, and STIG application within complex systems, resulting in a comprehensive understanding of IA compliance across teamcomprehensive understanding of IA compliance across team Articulated detailed representation of LSM IA architecture as applied bothArticulated detailed representation of LSM IA architecture as applied both internally and externally, as the primary management system for the GMDinternally and externally, as the primary management system for the GMD LHC to program executivesLHC to program executives Mr. Phillip Thomaschima, ManagerMr. Phillip Thomaschima, Manager 314.563.5344314.563.5344
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201413 Project 7 of 8Project 7 of 8 IA Subject Matter ExpertIA Subject Matter Expert March 2008 to August 2009March 2008 to August 2009 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Systems Engineering Integration & Test (SEIT)Systems Engineering Integration & Test (SEIT) Program DescriptionProgram Description The role of the GCN SEIT was to oversee the integration of technology,The role of the GCN SEIT was to oversee the integration of technology, process, and risk mitigation capability within the GMD GCN environmentprocess, and risk mitigation capability within the GMD GCN environment Position SummaryPosition Summary Responsible for providing the customer and Integrated Product Teams withResponsible for providing the customer and Integrated Product Teams with risk-based strategic approaches to addressing evolving threat, systemrisk-based strategic approaches to addressing evolving threat, system vulnerabilities, and the attainment of certification and accreditation, productvulnerabilities, and the attainment of certification and accreditation, product evaluations, requirements verification and technical supportevaluations, requirements verification and technical support
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201414 Project 7 of 8Project 7 of 8 IA Subject Matter ExpertIA Subject Matter Expert March 2008 to August 2009March 2008 to August 2009 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Systems Engineering Integration & Test (SEIT)Systems Engineering Integration & Test (SEIT) MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Developed the GCN Long Haul Communications (LHC) System Manager (LSM) IA architectureDeveloped the GCN Long Haul Communications (LHC) System Manager (LSM) IA architecture construct and design strategy to include IA capability enhancements and business developmentconstruct and design strategy to include IA capability enhancements and business development opportunitiesopportunities Advised SEIT management as to the progress, efficiency, and customer satisfaction related to theAdvised SEIT management as to the progress, efficiency, and customer satisfaction related to the planning, implementation, and management of the GCN IA programplanning, implementation, and management of the GCN IA program Lead contractor System Security Engineering (SSE) for the MDA/DISA Transition IA WorkingLead contractor System Security Engineering (SSE) for the MDA/DISA Transition IA Working Group, responsible for on time development of the IA strategic planning and transitionalGroup, responsible for on time development of the IA strategic planning and transitional coordination activities in support of both GCN LHC Site Network (LHCSN), and DISA LHCcoordination activities in support of both GCN LHC Site Network (LHCSN), and DISA LHC Transport DIACAP activitiesTransport DIACAP activities Developed IA vulnerability management (IAVM) processes to cost effectively evaluate, design,Developed IA vulnerability management (IAVM) processes to cost effectively evaluate, design, and develop mitigating solutions within complex integrated missile defense systemsand develop mitigating solutions within complex integrated missile defense systems Conducted marketability study of business potential for Boeing within the health industry basedConducted marketability study of business potential for Boeing within the health industry based upon the Health Insurance Portability and Accountability Act (HIPAA), Health Informationupon the Health Insurance Portability and Accountability Act (HIPAA), Health Information Technology for Economic and Clinical Health (HITECH) Act, of 2009. Studied and providedTechnology for Economic and Clinical Health (HITECH) Act, of 2009. Studied and provided comparative risk data based upon government regulatory environments under FISMA forcomparative risk data based upon government regulatory environments under FISMA for marketability of information assurance technologies within the health industrymarketability of information assurance technologies within the health industry Mr. Matthew Harleman, ManagerMr. Matthew Harleman, Manager 714-904-5367714-904-5367
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201415 Project 8 of 8Project 8 of 8 C&A Team LeadC&A Team Lead September 2006 to September 2009September 2006 to September 2009 Joint Tactical Radio Systems, Ground Mobile RadioJoint Tactical Radio Systems, Ground Mobile Radio Program DescriptionProgram Description The Army’s Joint Tactical Radio System, Ground Mobile Radio initiative wasThe Army’s Joint Tactical Radio System, Ground Mobile Radio initiative was a multi-million dollar contract awarded to Boeing, BAE, and Raytheon. Thea multi-million dollar contract awarded to Boeing, BAE, and Raytheon. The JTRS GMR leveraged cutting edge software waveform technology to supportJTRS GMR leveraged cutting edge software waveform technology to support the immediate communications need of the fielded soldier.the immediate communications need of the fielded soldier. Position SummaryPosition Summary Lead the planning, design implementation, test, and certification activities inLead the planning, design implementation, test, and certification activities in support of the JTRS GMR pursuant to the DoD Defense Informationsupport of the JTRS GMR pursuant to the DoD Defense Information Assurance Certification and Accreditation Process (DIACAP).Assurance Certification and Accreditation Process (DIACAP).
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201416 Project 8 of 8Project 8 of 8 C&A Team LeadC&A Team Lead September 2006 to September 2009September 2006 to September 2009 Joint Tactical Radio Systems, Ground Mobile RadioJoint Tactical Radio Systems, Ground Mobile Radio MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Advised program management and customer in the roles andAdvised program management and customer in the roles and responsibilities mandated by the DIACAP resulting in the clarification ofresponsibilities mandated by the DIACAP resulting in the clarification of contractual boundaries thus reducing Boeing risk.contractual boundaries thus reducing Boeing risk. Developed the C&A strategy for the JTRS GMR enterprise supportDeveloped the C&A strategy for the JTRS GMR enterprise support network addressing the use of software waveforms, GMR networknetwork addressing the use of software waveforms, GMR network management and monitoring, and GMR hardware used to create the virtualmanagement and monitoring, and GMR hardware used to create the virtual layers of a GMR tactical networking infrastructure.layers of a GMR tactical networking infrastructure. Supported the GMR Remote System Management design documentation inSupported the GMR Remote System Management design documentation in accordance with the NSA Uniform INFOSEC Criteria (UIC) specification.accordance with the NSA Uniform INFOSEC Criteria (UIC) specification. Mr. Vern Slonaker, Co-workerMr. Vern Slonaker, Co-worker 714-743-6937714-743-6937
Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201417 Misc. Program InformationMisc. Program Information GMDGMD - Boeing is the prime contractor for GMD, the United States' only- Boeing is the prime contractor for GMD, the United States' only operational defense against long-range ballistic missiles, and holds theoperational defense against long-range ballistic missiles, and holds the Development and Sustainment Contract for the system. Boeing overseesDevelopment and Sustainment Contract for the system. Boeing oversees development, testing, deployment, operations and sustainment of the ground-baseddevelopment, testing, deployment, operations and sustainment of the ground-based system to detect, track and destroy long-range ballistic missiles in their midcoursesystem to detect, track and destroy long-range ballistic missiles in their midcourse phase of flight.phase of flight. LabNetLabNet - Phantom Works' Strategic Development & Experimentation organization- Phantom Works' Strategic Development & Experimentation organization provides the world's premier family-of-systems experimentation capability andprovides the world's premier family-of-systems experimentation capability and performs customer-focused operator-in-the-loop experimentation. Utilizing live,performs customer-focused operator-in-the-loop experimentation. Utilizing live, virtual or constructive assets, users assess future capabilities and better understandvirtual or constructive assets, users assess future capabilities and better understand future defense and security needs. The SD&E organization also provides network-future defense and security needs. The SD&E organization also provides network- enabling support to the enterprise and customers by coordinating and integratingenabling support to the enterprise and customers by coordinating and integrating the company's worldwide array of modeling, simulation and analysis resources asthe company's worldwide array of modeling, simulation and analysis resources as well as their related experimentation activities.well as their related experimentation activities. The Boeing Laboratory NetworkThe Boeing Laboratory Network (LabNet) connects company labs with government, commercial and civilian labs(LabNet) connects company labs with government, commercial and civilian labs domestically and internationally.domestically and internationally.

Recommended

Ziegler Experience Portfolio
Ziegler Experience PortfolioZiegler Experience Portfolio
Ziegler Experience PortfolioWilliam Ziegler, PMP
 
Tech Res Doody
Tech Res DoodyTech Res Doody
Tech Res DoodyMike Doody
 
Making Network Security Relevant
Making Network Security RelevantMaking Network Security Relevant
Making Network Security RelevantHP Enterprise Italia
 
Webinar–Improving Fuzz Testing of Infotainment Systems and Telematics Units U...
Webinar–Improving Fuzz Testing of Infotainment Systems and Telematics Units U...Webinar–Improving Fuzz Testing of Infotainment Systems and Telematics Units U...
Webinar–Improving Fuzz Testing of Infotainment Systems and Telematics Units U...Synopsys Software Integrity Group
 
Why we decided on RSA Security Analytics for network visibility
Why we decided on RSA Security Analytics for network visibilityWhy we decided on RSA Security Analytics for network visibility
Why we decided on RSA Security Analytics for network visibilityRecruit Technologies
 
Dev(Sec)Ops - Architecture for Security and Compliance
Dev(Sec)Ops - Architecture for Security and ComplianceDev(Sec)Ops - Architecture for Security and Compliance
Dev(Sec)Ops - Architecture for Security and ComplianceYi-Feng Tzeng
 
Mobile Application Penetration Testing
Mobile Application Penetration TestingMobile Application Penetration Testing
Mobile Application Penetration TestingBGA Cyber Security
 
GR_Narendra __Resume
GR_Narendra __ResumeGR_Narendra __Resume
GR_Narendra __ResumeG.R. Narendra Reddy
 

Recommended

Ziegler Experience Portfolio
Ziegler Experience PortfolioZiegler Experience Portfolio
Ziegler Experience PortfolioWilliam Ziegler, PMP
 
Tech Res Doody
Tech Res DoodyTech Res Doody
Tech Res DoodyMike Doody
 
Making Network Security Relevant
Making Network Security RelevantMaking Network Security Relevant
Making Network Security RelevantHP Enterprise Italia
 
Webinar–Improving Fuzz Testing of Infotainment Systems and Telematics Units U...
Webinar–Improving Fuzz Testing of Infotainment Systems and Telematics Units U...Webinar–Improving Fuzz Testing of Infotainment Systems and Telematics Units U...
Webinar–Improving Fuzz Testing of Infotainment Systems and Telematics Units U...Synopsys Software Integrity Group
 
Why we decided on RSA Security Analytics for network visibility
Why we decided on RSA Security Analytics for network visibilityWhy we decided on RSA Security Analytics for network visibility
Why we decided on RSA Security Analytics for network visibilityRecruit Technologies
 
Dev(Sec)Ops - Architecture for Security and Compliance
Dev(Sec)Ops - Architecture for Security and ComplianceDev(Sec)Ops - Architecture for Security and Compliance
Dev(Sec)Ops - Architecture for Security and ComplianceYi-Feng Tzeng
 
Mobile Application Penetration Testing
Mobile Application Penetration TestingMobile Application Penetration Testing
Mobile Application Penetration TestingBGA Cyber Security
 
GR_Narendra __Resume
GR_Narendra __ResumeGR_Narendra __Resume
GR_Narendra __ResumeG.R. Narendra Reddy
 
Building a Product Security Practice in a DevOps World
Building a Product Security Practice in a DevOps WorldBuilding a Product Security Practice in a DevOps World
Building a Product Security Practice in a DevOps WorldArun Prabhakar
 
Deliver Flawless Mobile Apps Faster with CI/CD & CT
Deliver Flawless Mobile Apps Faster with CI/CD & CTDeliver Flawless Mobile Apps Faster with CI/CD & CT
Deliver Flawless Mobile Apps Faster with CI/CD & CTPerfecto by Perforce
 
Appendix AOperating ScenarioGPSCDU Project for Wild B.docx
Appendix AOperating ScenarioGPSCDU Project for Wild B.docxAppendix AOperating ScenarioGPSCDU Project for Wild B.docx
Appendix AOperating ScenarioGPSCDU Project for Wild B.docxlisandrai1k
 
Military Command Post of the Future
Military Command Post of the FutureMilitary Command Post of the Future
Military Command Post of the FutureAFRIKASOURCES
 
Application Security - Dont leave your AppSec for the last moment Meetup 2104...
Application Security - Dont leave your AppSec for the last moment Meetup 2104...Application Security - Dont leave your AppSec for the last moment Meetup 2104...
Application Security - Dont leave your AppSec for the last moment Meetup 2104...lior mazor
 
Democratizing security
Democratizing securityDemocratizing security
Democratizing securitySanjeev Sharma
 
EuroPython 2019: Modern Continuous Delivery for Python Developers
EuroPython 2019: Modern Continuous Delivery for Python DevelopersEuroPython 2019: Modern Continuous Delivery for Python Developers
EuroPython 2019: Modern Continuous Delivery for Python DevelopersPeter Bittner
 
Brian Voorhees Resume(4)
Brian Voorhees Resume(4)Brian Voorhees Resume(4)
Brian Voorhees Resume(4)Brian Voorhees, MBA, MSITM, PMP, PMI-ACP
 
HEENA ARORA
HEENA ARORAHEENA ARORA
HEENA ARORAHeena Arora
 
Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)
Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)
Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)NRB
 
Proposal Defense Presentation Template.pptx
Proposal Defense Presentation Template.pptxProposal Defense Presentation Template.pptx
Proposal Defense Presentation Template.pptxUsamaAli119043
 
Practical Enterprise Security Architecture
Practical Enterprise Security Architecture Practical Enterprise Security Architecture
Practical Enterprise Security Architecture Priyanka Aash
 
Aiman Alhajjah-Resume-07-29-16
Aiman Alhajjah-Resume-07-29-16Aiman Alhajjah-Resume-07-29-16
Aiman Alhajjah-Resume-07-29-16Aiman Alhajjah
 
Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...
Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...
Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...aztechcouncil
 
Vinoth babu b new
Vinoth babu b newVinoth babu b new
Vinoth babu b newVinoth Babu B CEH,CCDA,CCNA,CXFS
 
Vinoth Babu B-New
Vinoth Babu B-NewVinoth Babu B-New
Vinoth Babu B-NewVinoth Babu B CEH,CCDA,CCNA,CXFS
 
Vinoth babu b new
Vinoth babu b newVinoth babu b new
Vinoth babu b newVinoth Babu B CEH,CCDA,CCNA,CXFS
 
Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...
Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...
Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...Perforce
 
Developers Driving DevOps at Scale: 5 Keys to Success
Developers Driving DevOps at Scale: 5 Keys to SuccessDevelopers Driving DevOps at Scale: 5 Keys to Success
Developers Driving DevOps at Scale: 5 Keys to SuccessDevOps.com
 
Linder,William H IT Auditor 0216
Linder,William H IT Auditor 0216Linder,William H IT Auditor 0216
Linder,William H IT Auditor 0216William Linder
 

More Related Content

Similar to Cohen Boeing Supp

Building a Product Security Practice in a DevOps World
Building a Product Security Practice in a DevOps WorldBuilding a Product Security Practice in a DevOps World
Building a Product Security Practice in a DevOps WorldArun Prabhakar
 
Deliver Flawless Mobile Apps Faster with CI/CD & CT
Deliver Flawless Mobile Apps Faster with CI/CD & CTDeliver Flawless Mobile Apps Faster with CI/CD & CT
Deliver Flawless Mobile Apps Faster with CI/CD & CTPerfecto by Perforce
 
Appendix AOperating ScenarioGPSCDU Project for Wild B.docx
Appendix AOperating ScenarioGPSCDU Project for Wild B.docxAppendix AOperating ScenarioGPSCDU Project for Wild B.docx
Appendix AOperating ScenarioGPSCDU Project for Wild B.docxlisandrai1k
 
Military Command Post of the Future
Military Command Post of the FutureMilitary Command Post of the Future
Military Command Post of the FutureAFRIKASOURCES
 
Application Security - Dont leave your AppSec for the last moment Meetup 2104...
Application Security - Dont leave your AppSec for the last moment Meetup 2104...Application Security - Dont leave your AppSec for the last moment Meetup 2104...
Application Security - Dont leave your AppSec for the last moment Meetup 2104...lior mazor
 
Democratizing security
Democratizing securityDemocratizing security
Democratizing securitySanjeev Sharma
 
EuroPython 2019: Modern Continuous Delivery for Python Developers
EuroPython 2019: Modern Continuous Delivery for Python DevelopersEuroPython 2019: Modern Continuous Delivery for Python Developers
EuroPython 2019: Modern Continuous Delivery for Python DevelopersPeter Bittner
 
Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)
Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)
Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)NRB
 
Proposal Defense Presentation Template.pptx
Proposal Defense Presentation Template.pptxProposal Defense Presentation Template.pptx
Proposal Defense Presentation Template.pptxUsamaAli119043
 
Practical Enterprise Security Architecture
Practical Enterprise Security Architecture Practical Enterprise Security Architecture
Practical Enterprise Security Architecture Priyanka Aash
 
Aiman Alhajjah-Resume-07-29-16
Aiman Alhajjah-Resume-07-29-16Aiman Alhajjah-Resume-07-29-16
Aiman Alhajjah-Resume-07-29-16Aiman Alhajjah
 
Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...
Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...
Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...aztechcouncil
 
Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...
Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...
Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...Perforce
 
Developers Driving DevOps at Scale: 5 Keys to Success
Developers Driving DevOps at Scale: 5 Keys to SuccessDevelopers Driving DevOps at Scale: 5 Keys to Success
Developers Driving DevOps at Scale: 5 Keys to SuccessDevOps.com
 
Linder,William H IT Auditor 0216
Linder,William H IT Auditor 0216Linder,William H IT Auditor 0216
Linder,William H IT Auditor 0216William Linder
 

Similar to Cohen Boeing Supp (20)

Building a Product Security Practice in a DevOps World
Building a Product Security Practice in a DevOps WorldBuilding a Product Security Practice in a DevOps World
Building a Product Security Practice in a DevOps World
 
Deliver Flawless Mobile Apps Faster with CI/CD & CT
Deliver Flawless Mobile Apps Faster with CI/CD & CTDeliver Flawless Mobile Apps Faster with CI/CD & CT
Deliver Flawless Mobile Apps Faster with CI/CD & CT
 
Appendix AOperating ScenarioGPSCDU Project for Wild B.docx
Appendix AOperating ScenarioGPSCDU Project for Wild B.docxAppendix AOperating ScenarioGPSCDU Project for Wild B.docx
Appendix AOperating ScenarioGPSCDU Project for Wild B.docx
 
Military Command Post of the Future
Military Command Post of the FutureMilitary Command Post of the Future
Military Command Post of the Future
 
Application Security - Dont leave your AppSec for the last moment Meetup 2104...
Application Security - Dont leave your AppSec for the last moment Meetup 2104...Application Security - Dont leave your AppSec for the last moment Meetup 2104...
Application Security - Dont leave your AppSec for the last moment Meetup 2104...
 
Democratizing security
Democratizing securityDemocratizing security
Democratizing security
 
EuroPython 2019: Modern Continuous Delivery for Python Developers
EuroPython 2019: Modern Continuous Delivery for Python DevelopersEuroPython 2019: Modern Continuous Delivery for Python Developers
EuroPython 2019: Modern Continuous Delivery for Python Developers
 
Brian Voorhees Resume(4)
Brian Voorhees Resume(4)Brian Voorhees Resume(4)
Brian Voorhees Resume(4)
 
HEENA ARORA
HEENA ARORAHEENA ARORA
HEENA ARORA
 
Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)
Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)
Development and Third Party Maintenance for the IBM Mainframe (L. De Bruyn)
 
Proposal Defense Presentation Template.pptx
Proposal Defense Presentation Template.pptxProposal Defense Presentation Template.pptx
Proposal Defense Presentation Template.pptx
 
Practical Enterprise Security Architecture
Practical Enterprise Security Architecture Practical Enterprise Security Architecture
Practical Enterprise Security Architecture
 
Aiman Alhajjah-Resume-07-29-16
Aiman Alhajjah-Resume-07-29-16Aiman Alhajjah-Resume-07-29-16
Aiman Alhajjah-Resume-07-29-16
 
Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...
Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...
Lunch and Learn, Pitfalls and Best Practic, Preses Around Outsourcing Softwar...
 
Vinoth babu b new
Vinoth babu b newVinoth babu b new
Vinoth babu b new
 
Vinoth Babu B-New
Vinoth Babu B-NewVinoth Babu B-New
Vinoth Babu B-New
 
Vinoth babu b new
Vinoth babu b newVinoth babu b new
Vinoth babu b new
 
Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...
Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...
Achieving Software Safety, Security, and Reliability Part 3: What Does the Fu...
 
Developers Driving DevOps at Scale: 5 Keys to Success
Developers Driving DevOps at Scale: 5 Keys to SuccessDevelopers Driving DevOps at Scale: 5 Keys to Success
Developers Driving DevOps at Scale: 5 Keys to Success
 
Linder,William H IT Auditor 0216
Linder,William H IT Auditor 0216Linder,William H IT Auditor 0216
Linder,William H IT Auditor 0216
 

Cohen Boeing Supp

  • 1. Roberta Cohen, CISSPRoberta Cohen, CISSP Supplemental Experience InformationSupplemental Experience Information The Boeing CompanyThe Boeing Company 2006-20142006-2014 While at Boeing, she applied the breadth of her experience within theWhile at Boeing, she applied the breadth of her experience within the information assurance (IA) field by leading certification and risk managementinformation assurance (IA) field by leading certification and risk management programs (NIST, FISMA, DIACAP, NISPOM), cyber research andprograms (NIST, FISMA, DIACAP, NISPOM), cyber research and development, strategic planning initiatives, and proposal developmentdevelopment, strategic planning initiatives, and proposal development activities. Ms. Cohen has earned the position of Technical Lead Engineer byactivities. Ms. Cohen has earned the position of Technical Lead Engineer by demonstrating her ability to incorporate systems engineering and projectdemonstrating her ability to incorporate systems engineering and project management practices to effectively plan, execute, and control, cost and riskmanagement practices to effectively plan, execute, and control, cost and risk within complex, high assurance environments such as: Global Missile Defense -within complex, high assurance environments such as: Global Missile Defense - Global Communications Network, Joint Tactical Radio Systems, BoeingGlobal Communications Network, Joint Tactical Radio Systems, Boeing Enterprise Networks, and Future Combat Systems.Enterprise Networks, and Future Combat Systems.
  • 2. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20142 Roberta Cohen, CISSPRoberta Cohen, CISSP Positions HeldPositions Held The Boeing CompanyThe Boeing Company 1.1. Operations & Security LeadOperations & Security Lead PhantomNet ProgramPhantomNet Program 2.2. Security LeadSecurity Lead Boeing Global Enterprise LabNet ProgramBoeing Global Enterprise LabNet Program 3.3. Lead Systems Security EngineerLead Systems Security Engineer Command & Control Enterprise ServicesCommand & Control Enterprise Services 4.4. Project LeadProject Lead Global Missile Defense Communications Network (GCN)Global Missile Defense Communications Network (GCN) 5.5. Information Assurance LeadInformation Assurance Lead GCN Long Haul Communications Systems Manager (LSM)GCN Long Haul Communications Systems Manager (LSM) 6.6. Information Assurance Subject Matter ExpertInformation Assurance Subject Matter Expert GCN Systems Engineering Integration & Test TeamGCN Systems Engineering Integration & Test Team 7.7. Lead IA Subject Matter ExpertLead IA Subject Matter Expert Boeing Defense Systems, Data Center Design Reference Model ProgramBoeing Defense Systems, Data Center Design Reference Model Program 8.8. DIACAP C&A LeadDIACAP C&A Lead Joint Tactical Radio Systems, Ground Mobile Radio ProgramJoint Tactical Radio Systems, Ground Mobile Radio Program
  • 3. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20143 Project 1 of 8Project 1 of 8 Operations & Security LeadOperations & Security Lead October 2013 to December 2014October 2013 to December 2014 Phantom Works, PhantomNet ProgramPhantom Works, PhantomNet Program Project DescriptionProject Description PhantomNet was a diversified, multi-layer environment consisting of differingPhantomNet was a diversified, multi-layer environment consisting of differing virtual systems representing various permeations of operating systems, andvirtual systems representing various permeations of operating systems, and application configurations, to which Boeing participants from across theapplication configurations, to which Boeing participants from across the enterprise could hone cyber security knowledge and capability. Theenterprise could hone cyber security knowledge and capability. The environment was supported by a team of senior information assurance andenvironment was supported by a team of senior information assurance and network engineering specialistsnetwork engineering specialists Position SummaryPosition Summary Led engineering team in support of network focused security monitoring andLed engineering team in support of network focused security monitoring and cyber technology research and development program oriented toward increasingcyber technology research and development program oriented toward increasing the Boeing competitive edge in cyber technologythe Boeing competitive edge in cyber technology
  • 4. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20144 Project 1 of 8Project 1 of 8 Operations & Security LeadOperations & Security Lead October 2013 to December 2014October 2013 to December 2014 PhantomNet ProgramPhantomNet Program MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Coordinated and obtained Boeing enterprise IT and Legal approvalsCoordinated and obtained Boeing enterprise IT and Legal approvals necessary to support unique security attributes of the PhantomNetnecessary to support unique security attributes of the PhantomNet environment within the Boeing Enterpriseenvironment within the Boeing Enterprise Created process and functionality to incorporate the ability to capture andCreated process and functionality to incorporate the ability to capture and measure, knowledge gained within company to increase Boeingmeasure, knowledge gained within company to increase Boeing competitive edge in cyber technologycompetitive edge in cyber technology Provided monitoring and oversight of network security systems, siteProvided monitoring and oversight of network security systems, site installation, and performanceinstallation, and performance Assisted in the first round virtual environment build-out in support ofAssisted in the first round virtual environment build-out in support of experimental penetration testingexperimental penetration testing Mr. Kerry Hu, Sr. ManagerMr. Kerry Hu, Sr. Manager 206.544.0950206.544.0950
  • 5. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20145 Project 2 of 8Project 2 of 8 Security LeadSecurity Lead December 2011 to October 2013December 2011 to October 2013 Boeing Enterprise LabNet ProgramBoeing Enterprise LabNet Program Program DetailsProgram Details The LabNet network is a specialized network designed to segregate BoeingThe LabNet network is a specialized network designed to segregate Boeing proprietary research and development, and/or sensitive contract supportproprietary research and development, and/or sensitive contract support environments which require robust security capability. The network isenvironments which require robust security capability. The network is leveraged throughout the corporation, and is supported by a specialized seniorleveraged throughout the corporation, and is supported by a specialized senior group of engineering staffgroup of engineering staff Position SummaryPosition Summary Provided comprehensive security oversight in support of the LabNet program,Provided comprehensive security oversight in support of the LabNet program, to include: security architecture development, security policy and proceduresto include: security architecture development, security policy and procedures development, network security monitoring and response management, firewalldevelopment, network security monitoring and response management, firewall configuration management, vulnerability testing, and customer interactionconfiguration management, vulnerability testing, and customer interaction
  • 6. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20146 Project 2 of 8Project 2 of 8 Security LeadSecurity Lead December 2011 to October 2013December 2011 to October 2013 Boeing Enterprise LabNet ProgramBoeing Enterprise LabNet Program MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Developed LabNet wireless policy and procedures for integration ofDeveloped LabNet wireless policy and procedures for integration of proprietary wireless access points throughout Boeing LabNet un-trustedproprietary wireless access points throughout Boeing LabNet un-trusted and trusted environmentsand trusted environments Led research and development of proprietary monitoring capability basedLed research and development of proprietary monitoring capability based upon specific LabNet architecture to assist in the identification of potentialupon specific LabNet architecture to assist in the identification of potential insider threat behaviorinsider threat behavior Designed and established cutting edge security operations center, toDesigned and established cutting edge security operations center, to include tiered network lab environment in support of redundant monitoringinclude tiered network lab environment in support of redundant monitoring capability for international locations, and operational research andcapability for international locations, and operational research and development activitiesdevelopment activities Mr. Kerry Hu, Sr. ManagerMr. Kerry Hu, Sr. Manager 206.544.0950206.544.0950
  • 7. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20147 Project 3 of 8Project 3 of 8 Lead Systems Security EngineerLead Systems Security Engineer January 2011 to December 2011January 2011 to December 2011 Boeing Command and Control Enterprise Services (C2ES)Boeing Command and Control Enterprise Services (C2ES) Program DescriptionProgram Description C2ES was a research development program in support of defining the utilizationC2ES was a research development program in support of defining the utilization of cloud technology in combination with Service Oriented Architecture (SOA)of cloud technology in combination with Service Oriented Architecture (SOA) technologies as a means to provide the customer with a more efficient means oftechnologies as a means to provide the customer with a more efficient means of processing and storing sensitive dataprocessing and storing sensitive data Position SummaryPosition Summary Led multi-faceted programs in the research, development, and integration ofLed multi-faceted programs in the research, development, and integration of cutting edge information assurance, and risk mitigation technologies withincutting edge information assurance, and risk mitigation technologies within service oriented, virtual, and multi-level Command and Control environmentsservice oriented, virtual, and multi-level Command and Control environments
  • 8. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20148 Project 3 of 8Project 3 of 8 Lead Systems Security EngineerLead Systems Security Engineer January 2011 to December 2011January 2011 to December 2011 Boeing Command and Control Enterprise Services (C2ES)Boeing Command and Control Enterprise Services (C2ES) MAJOR ACOMPLISHMENTSMAJOR ACOMPLISHMENTS Conceptualized and initiated the use of Agile process and comprehensive engineeringConceptualized and initiated the use of Agile process and comprehensive engineering tools to develop a “Just-in-Time Information Technologies Repository” for thetools to develop a “Just-in-Time Information Technologies Repository” for the development and reuse of system engineered development and design packages,development and reuse of system engineered development and design packages, significantly, reducing initial design costs and deployment time; thus creating a baselinesignificantly, reducing initial design costs and deployment time; thus creating a baseline to support open architecture concepts of reuse, and modularityto support open architecture concepts of reuse, and modularity Associate lead systems engineer for the C2ES Foundry program leveraging virtual cloudAssociate lead systems engineer for the C2ES Foundry program leveraging virtual cloud computing environments to support One Boeing rapid prototyping deployment, andcomputing environments to support One Boeing rapid prototyping deployment, and LEAN 10X initiativesLEAN 10X initiatives Lead Royal Saudi Air Force IA architecture development and product selection forLead Royal Saudi Air Force IA architecture development and product selection for ROM and proposal activities leveraging internationally recognized business driven riskROM and proposal activities leveraging internationally recognized business driven risk management methodologies, and ITAR approved technologiesmanagement methodologies, and ITAR approved technologies Implemented the actualization of comprehensive Agile process planning and initiationImplemented the actualization of comprehensive Agile process planning and initiation through the development of program roadmaps, project, release, and iteration plansthrough the development of program roadmaps, project, release, and iteration plans Completed Boeing Agile Software Process training as Scrum Master, and Project OwnerCompleted Boeing Agile Software Process training as Scrum Master, and Project Owner Responsible for the planning, management, and daily operational activity associatedResponsible for the planning, management, and daily operational activity associated with classified lab environments, and implementation of multi-level technologies e.g.,with classified lab environments, and implementation of multi-level technologies e.g., Data Diode, PAVENet, and eXMeritusData Diode, PAVENet, and eXMeritus Mr. Roy T. Okuno, Sr. Manager 714.372.6996Mr. Roy T. Okuno, Sr. Manager 714.372.6996
  • 9. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 20149 Project 4 of 8Project 4 of 8 Project LeadProject Lead January 2011 to December 2011January 2011 to December 2011 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Security Operations Data Sharing InitiativeSecurity Operations Data Sharing Initiative Project DetailsProject Details This was a small program consisting of a team of about 15 engineers, tasked withThis was a small program consisting of a team of about 15 engineers, tasked with the development, test, and deployment of a web interface to data collected fromthe development, test, and deployment of a web interface to data collected from multiple network management systems, with the goal of providing the GMDmultiple network management systems, with the goal of providing the GMD customer with a single point of reference to critical datacustomer with a single point of reference to critical data Position SummaryPosition Summary Responsible for the design concept, marketing, and development of a webResponsible for the design concept, marketing, and development of a web services interface to receive, process, and display the Defense Informationservices interface to receive, process, and display the Defense Information Systems Agency (DISA) Network Management System (DNMS) performanceSystems Agency (DISA) Network Management System (DNMS) performance data to the GMD Network Operations Center war fighterdata to the GMD Network Operations Center war fighter
  • 10. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201410 Project 4 of 8Project 4 of 8 Project LeadProject Lead January 2011 to December 2011January 2011 to December 2011 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Security Operations Data Sharing InitiativeSecurity Operations Data Sharing Initiative MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Created a user-friendly, modular approach for support team roles to easily access,Created a user-friendly, modular approach for support team roles to easily access, interpret, implement, and document systems engineering tasks, significantly reducinginterpret, implement, and document systems engineering tasks, significantly reducing overall production time, assuring design linkage to requirements, and enhancing a teamoverall production time, assuring design linkage to requirements, and enhancing a team atmosphere by encouraging close interactions and timely responseatmosphere by encouraging close interactions and timely response Developed a strategic phased approach to increase the usability, definition and role ofDeveloped a strategic phased approach to increase the usability, definition and role of the DNMS within the GMD operational environmentthe DNMS within the GMD operational environment Created an architecture which addressed and defined lower requirements, and designCreated an architecture which addressed and defined lower requirements, and design details to assure requirement verification and customer satisfactiondetails to assure requirement verification and customer satisfaction Leveraged experience with tools such as DOORS, MS SharePoint, and Rhapsody toLeveraged experience with tools such as DOORS, MS SharePoint, and Rhapsody to establish a new generation of systems engineering methodology for future GCNestablish a new generation of systems engineering methodology for future GCN programsprograms Maintained balance and positive interactions within a multifaceted customer baseMaintained balance and positive interactions within a multifaceted customer base whilst meeting the needs of Global Missile Defense operational objectiveswhilst meeting the needs of Global Missile Defense operational objectives Mr. Phillip Thomaschima, Manager 314.563.5344Mr. Phillip Thomaschima, Manager 314.563.5344
  • 11. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201411 Project 6 of 8Project 6 of 8 Program IA LeadProgram IA Lead August 2009 to December 2011August 2009 to December 2011 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Long Haul Communications Systems Manager (LSM)Long Haul Communications Systems Manager (LSM) Program DescriptionProgram Description The GCN LSM was a complex, multi-platform network management systemThe GCN LSM was a complex, multi-platform network management system developed to meet the stringent security monitoring and response mechanismsdeveloped to meet the stringent security monitoring and response mechanisms of Ground Missile Defense (GMD) Long Haul Communications Networkof Ground Missile Defense (GMD) Long Haul Communications Network (GCN)(GCN) Position SummaryPosition Summary Led a diverse team of engineers (7) in the application and analysis of detailedLed a diverse team of engineers (7) in the application and analysis of detailed risk assessments and design recommendations in accordance with evolvingrisk assessments and design recommendations in accordance with evolving threat data, system design changes, POA&M, existing certificationthreat data, system design changes, POA&M, existing certification requirements, and DISA Security Technical Implementation Guides (STIGs)requirements, and DISA Security Technical Implementation Guides (STIGs)
  • 12. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201412 Project 6 of 8Project 6 of 8 Program IA LeadProgram IA Lead August 2009 to December 2011August 2009 to December 2011 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Long Haul Communications Systems Manager (LSM)Long Haul Communications Systems Manager (LSM) MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Developed a risk-based evaluation and deployment process for the detailedDeveloped a risk-based evaluation and deployment process for the detailed implementation of DISA STIGs and mitigation activity associated withimplementation of DISA STIGs and mitigation activity associated with various vulnerability scanning toolsvarious vulnerability scanning tools Mentored engineering staff as to the use of DoD scanning tools, resultsMentored engineering staff as to the use of DoD scanning tools, results evaluation, and STIG application within complex systems, resulting in aevaluation, and STIG application within complex systems, resulting in a comprehensive understanding of IA compliance across teamcomprehensive understanding of IA compliance across team Articulated detailed representation of LSM IA architecture as applied bothArticulated detailed representation of LSM IA architecture as applied both internally and externally, as the primary management system for the GMDinternally and externally, as the primary management system for the GMD LHC to program executivesLHC to program executives Mr. Phillip Thomaschima, ManagerMr. Phillip Thomaschima, Manager 314.563.5344314.563.5344
  • 13. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201413 Project 7 of 8Project 7 of 8 IA Subject Matter ExpertIA Subject Matter Expert March 2008 to August 2009March 2008 to August 2009 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Systems Engineering Integration & Test (SEIT)Systems Engineering Integration & Test (SEIT) Program DescriptionProgram Description The role of the GCN SEIT was to oversee the integration of technology,The role of the GCN SEIT was to oversee the integration of technology, process, and risk mitigation capability within the GMD GCN environmentprocess, and risk mitigation capability within the GMD GCN environment Position SummaryPosition Summary Responsible for providing the customer and Integrated Product Teams withResponsible for providing the customer and Integrated Product Teams with risk-based strategic approaches to addressing evolving threat, systemrisk-based strategic approaches to addressing evolving threat, system vulnerabilities, and the attainment of certification and accreditation, productvulnerabilities, and the attainment of certification and accreditation, product evaluations, requirements verification and technical supportevaluations, requirements verification and technical support
  • 14. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201414 Project 7 of 8Project 7 of 8 IA Subject Matter ExpertIA Subject Matter Expert March 2008 to August 2009March 2008 to August 2009 Global Missile Defense – Global Communications NetworkGlobal Missile Defense – Global Communications Network Systems Engineering Integration & Test (SEIT)Systems Engineering Integration & Test (SEIT) MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Developed the GCN Long Haul Communications (LHC) System Manager (LSM) IA architectureDeveloped the GCN Long Haul Communications (LHC) System Manager (LSM) IA architecture construct and design strategy to include IA capability enhancements and business developmentconstruct and design strategy to include IA capability enhancements and business development opportunitiesopportunities Advised SEIT management as to the progress, efficiency, and customer satisfaction related to theAdvised SEIT management as to the progress, efficiency, and customer satisfaction related to the planning, implementation, and management of the GCN IA programplanning, implementation, and management of the GCN IA program Lead contractor System Security Engineering (SSE) for the MDA/DISA Transition IA WorkingLead contractor System Security Engineering (SSE) for the MDA/DISA Transition IA Working Group, responsible for on time development of the IA strategic planning and transitionalGroup, responsible for on time development of the IA strategic planning and transitional coordination activities in support of both GCN LHC Site Network (LHCSN), and DISA LHCcoordination activities in support of both GCN LHC Site Network (LHCSN), and DISA LHC Transport DIACAP activitiesTransport DIACAP activities Developed IA vulnerability management (IAVM) processes to cost effectively evaluate, design,Developed IA vulnerability management (IAVM) processes to cost effectively evaluate, design, and develop mitigating solutions within complex integrated missile defense systemsand develop mitigating solutions within complex integrated missile defense systems Conducted marketability study of business potential for Boeing within the health industry basedConducted marketability study of business potential for Boeing within the health industry based upon the Health Insurance Portability and Accountability Act (HIPAA), Health Informationupon the Health Insurance Portability and Accountability Act (HIPAA), Health Information Technology for Economic and Clinical Health (HITECH) Act, of 2009. Studied and providedTechnology for Economic and Clinical Health (HITECH) Act, of 2009. Studied and provided comparative risk data based upon government regulatory environments under FISMA forcomparative risk data based upon government regulatory environments under FISMA for marketability of information assurance technologies within the health industrymarketability of information assurance technologies within the health industry Mr. Matthew Harleman, ManagerMr. Matthew Harleman, Manager 714-904-5367714-904-5367
  • 15. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201415 Project 8 of 8Project 8 of 8 C&A Team LeadC&A Team Lead September 2006 to September 2009September 2006 to September 2009 Joint Tactical Radio Systems, Ground Mobile RadioJoint Tactical Radio Systems, Ground Mobile Radio Program DescriptionProgram Description The Army’s Joint Tactical Radio System, Ground Mobile Radio initiative wasThe Army’s Joint Tactical Radio System, Ground Mobile Radio initiative was a multi-million dollar contract awarded to Boeing, BAE, and Raytheon. Thea multi-million dollar contract awarded to Boeing, BAE, and Raytheon. The JTRS GMR leveraged cutting edge software waveform technology to supportJTRS GMR leveraged cutting edge software waveform technology to support the immediate communications need of the fielded soldier.the immediate communications need of the fielded soldier. Position SummaryPosition Summary Lead the planning, design implementation, test, and certification activities inLead the planning, design implementation, test, and certification activities in support of the JTRS GMR pursuant to the DoD Defense Informationsupport of the JTRS GMR pursuant to the DoD Defense Information Assurance Certification and Accreditation Process (DIACAP).Assurance Certification and Accreditation Process (DIACAP).
  • 16. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201416 Project 8 of 8Project 8 of 8 C&A Team LeadC&A Team Lead September 2006 to September 2009September 2006 to September 2009 Joint Tactical Radio Systems, Ground Mobile RadioJoint Tactical Radio Systems, Ground Mobile Radio MAJOR ACCOMPLISHMENTSMAJOR ACCOMPLISHMENTS Advised program management and customer in the roles andAdvised program management and customer in the roles and responsibilities mandated by the DIACAP resulting in the clarification ofresponsibilities mandated by the DIACAP resulting in the clarification of contractual boundaries thus reducing Boeing risk.contractual boundaries thus reducing Boeing risk. Developed the C&A strategy for the JTRS GMR enterprise supportDeveloped the C&A strategy for the JTRS GMR enterprise support network addressing the use of software waveforms, GMR networknetwork addressing the use of software waveforms, GMR network management and monitoring, and GMR hardware used to create the virtualmanagement and monitoring, and GMR hardware used to create the virtual layers of a GMR tactical networking infrastructure.layers of a GMR tactical networking infrastructure. Supported the GMR Remote System Management design documentation inSupported the GMR Remote System Management design documentation in accordance with the NSA Uniform INFOSEC Criteria (UIC) specification.accordance with the NSA Uniform INFOSEC Criteria (UIC) specification. Mr. Vern Slonaker, Co-workerMr. Vern Slonaker, Co-worker 714-743-6937714-743-6937
  • 17. Roberta Cohen, CISSP Supplemental Information The Boeing Company 2006 - 201417 Misc. Program InformationMisc. Program Information GMDGMD - Boeing is the prime contractor for GMD, the United States' only- Boeing is the prime contractor for GMD, the United States' only operational defense against long-range ballistic missiles, and holds theoperational defense against long-range ballistic missiles, and holds the Development and Sustainment Contract for the system. Boeing overseesDevelopment and Sustainment Contract for the system. Boeing oversees development, testing, deployment, operations and sustainment of the ground-baseddevelopment, testing, deployment, operations and sustainment of the ground-based system to detect, track and destroy long-range ballistic missiles in their midcoursesystem to detect, track and destroy long-range ballistic missiles in their midcourse phase of flight.phase of flight. LabNetLabNet - Phantom Works' Strategic Development & Experimentation organization- Phantom Works' Strategic Development & Experimentation organization provides the world's premier family-of-systems experimentation capability andprovides the world's premier family-of-systems experimentation capability and performs customer-focused operator-in-the-loop experimentation. Utilizing live,performs customer-focused operator-in-the-loop experimentation. Utilizing live, virtual or constructive assets, users assess future capabilities and better understandvirtual or constructive assets, users assess future capabilities and better understand future defense and security needs. The SD&E organization also provides network-future defense and security needs. The SD&E organization also provides network- enabling support to the enterprise and customers by coordinating and integratingenabling support to the enterprise and customers by coordinating and integrating the company's worldwide array of modeling, simulation and analysis resources asthe company's worldwide array of modeling, simulation and analysis resources as well as their related experimentation activities.well as their related experimentation activities. The Boeing Laboratory NetworkThe Boeing Laboratory Network (LabNet) connects company labs with government, commercial and civilian labs(LabNet) connects company labs with government, commercial and civilian labs domestically and internationally.domestically and internationally.