Oasis SystemsDirector of Cyber Security and Critical Infrastructure Protection (Technical SME)
Oct. 2015 - Apr. 2018Rockville, MDOversaw the strategic direction for the Nuclear Regulatory Commission’s (NRC) Nuclear Security and Incident Response contract, focusing on assembling a specialized team adept in cybersecurity within the nuclear sector. This role required a deep understanding of technical objectives, goals, and expectations critical to the NRC’s mission. Engaged in technical discussions on cybersecurity with the public, nuclear industry stakeholders, and national laboratories, highlighting the NRC’s efforts to mitigate cybersecurity threats to public safety. My work centered on Critical Infrastructure Protection related to nuclear materials, where I applied my technical expertise to inform on current cybersecurity threats, their potential impacts, and the technical measures necessary to safeguard against cyber-attacks leading to radiological sabotage. I provided technical guidance to the NRC on developing regulations and guidance for the secure handling, storage, and creation of nuclear materials. This involved a nuanced understanding of the cybersecurity landscape to ensure that regulatory frameworks were robust enough to prevent adverse outcomes from cyber-attacks. I played a key role in the technical development of significant guidance and regulations for the NRC and the nuclear industry, including contributions to NRC Regulatory Guide 5.71, NRC Draft Guide 5061, NEI 08-09, NEI 13-10, NRC Draft Guide 5062, and Draft Rule 10 CFR 73.53. Additionally, I directed the development of the NRC Nuclear Cyber Security Inspection Training program, leveraging my technical knowledge to implement adult learning principles for effective training. This initiative was aimed at improving the consistency and quality of regional inspection outcomes, demonstrating a blend of technical acumen and an understanding of administrative law.