Are you seeking an Information Security Expert with real world hands on experience, graduate level education, and active industry certifications? Do you need help improving your security posture whether you need a vulnerability assessment to identify your risks or help preparing for a corporate compliance audit? If so, then look no further! My name is Courtney, and I an industry expert with over 20 years of certified experience in Information Security and Assurance, Information Technology (IT), Project Management, Training, Talent Acquisition, and Leadership. Prior active duty military Navy veteran with extensive experience working as a Government contractor and in the public sector. A trusted professional with a current Top Secret / SCI Security Clearance, I have successfully led and executed dozens of accreditation efforts all leading to Authorizations to Operate (ATOs). Served as a Corporate Security Officer (CSO) / Facility Security Officer (FSO) for a Government contractor, I have experience building an entire corporate security program, passing corporate Defense Security Service (DSS) audits, implementing and maintaining DFARS (NIST 800-171) compliance, managing personnel security clearances via JPAS, and contract assignments via ACAS. On the engineering side as a Government contractor, I created and managed assessment and authorization packages under RMF via eMASS and Xacta for unclassified and classified systems. I have worked with clients of varying sizes gaining hands on experience conducting vulnerability assessments, as well as preparing clients for their corporate compliance audits. Specialized experience in the NIST Cybersecurity Framework (CSF), NIST Risk Management Framework (RMF), Compliance Audits & Preparation, Vulnerability Assessments, Penetration Testing, Independent Verification & Validation (IV&V), and drafting information security policies and documents including but not limited to: ISMS, ISO 27001, Corporate Security Policies, Security Awareness, Acceptable Use Policies (AUPs), Remote Access / VPN, Third Party Access and Compliance, System Security Plans (SSPs), Security Test Plans (STPs), Security Control Traceability Matrices (SCTMs), and Plans of Action & Milestones (POA&M). Selected as a Fellow for the international Cyber Security Forum Initiative (CSFI), a mentor for the Women Society of Cyberjutsu, a member of the Military Cyber Professionals Association (MCPA), and served on the Board of Directors for ISACA (Information Systems Audit and Control Association). I have a Master of Science Degree in Information Security and Assurance and a Bachelor of Science Degree in Business-IT Management. Additionally, I hold the following active industry certifications: Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Ethical Hacker (CEH), Certified Hacking Forensic Investigator (CHFI), Certified Penetration Tester (CPT), Microsoft Certified System Eng