ELVIS MORELAND, CISSP, CGEIT, NSA IEM / IAM

I am an IT Manager specializing in IT Compliance & Security Operations Programs using NSA IA CMM, ISO 20000, ISO 27001/2, ITIL, NIST, CERT/CC, IATF, DISA & NSA standards in engineering compliant IT policy, programs, CSIRTs, NOCs and Security Operations Centers (SOC). I have a broad business, management, IT operations and technical background in federal and commercial sectors with over 20 years in the IT, aerospace and defense industry, including 4 years with the Department of Defense (U.S. Transportation Command) J6 - Global Command, Control, Communications, and Computer Systems (C4S) Coordination Center (GCCC) and J2. I previously developed a IT security analytical hierarchy process and a capability maturity model for Security Operations Centers (SOC-CMM) that combines an IT compliancy measurement with an IT assessment framework that can be used to meet IT regulatory requirements, cut costs and improve the Information Security (INFOSEC) operational capability of an existing NOC or assist with the design, implementation and management of an emerging SOC or CSIRT. I also have in-depth experience in developing System Security Authorization Agreements (SSAA), System Security Plans (SSP), Independent Verification & Validation (IV&V), DITSCAP to DIACAP Transition, All DIACAP Artifacts, and Plan of Action & Milestones (POA&M).