 |
 |
 |
 |
 |
 |
 |
 |
 |
 |
||||
 |
Ms. Givans has over 17 years of professional experience in information
assurance (IA), information security (INFOSEC), communications and
security protocols and standards, and network security architecture
design, certification, and accreditation. Since joining Booz Allen
Hamilton in 1984, Ms. Givans has contributed to and led a variety
of information security projects for Intelligence Community (IC),
DoD, Civilian Agency, and commercial clients. Ms. Givans is an experienced security architect and engineer, particularly in the information and network security field. Ms. Givans has led or contributed to a wide number of programs during her information security engineering tenure with Booz Allen, including the US Navy SPAWAR's Information Security Program, IT-21 Architecture, Communication Support System (CSS), MILES, HFAJ, KG-84A/C, and the IW Implementation Plan efforts, US Navy SPAWAR Systems Center (SSC)-Charleston and SSC-San Diego's IA programs, DISA's IA Architecture, IA Metrics, IA Multiple Security Level, PKI, and Boundary Protection Programs, NSA's ISDN Security Program, Global Grid Security Program, Embedded COMSEC Program, and Multi-level Information Systems Security Initiative (MISSI), US Patent and Trademark Office's security program, Department of Energy Security Program, and IRS Security Program. In many of these programs, Ms. Givans researched issues associated with development and use of security protocols, algorithms, architectures, and products. She has provided the full range of system security engineering services, including development of security concepts of operation, security policy, security architectures, security designs, and analysis of security design tradeoffs. For example, she and her technical team provided security engineering support to a number of PMW 161 and Navy programs, including the Joint Maritime Communications Strategy (JMCOMS), the Joint Maritime Command Information System (JMCIS), Information Technology for the 21st Century (IT-21), the Navy Virtual Intranet (NVI), the Defense Message System (DMS), and the Base Level Information Infrastructure (BLII). For these programs, they provided network security engineering, integration, and implementation services. She has been working with a number of DoD and Federal Agency customers to develop IA metrics and advance the capability of the community to accurately capture and assess the security posture of information systems through process and effectiveness metrics. She has also been an active member of the System Security Engineering Capability Maturity Model project since 1995. Ms. Givans leads the Security Architecture, Engineering, and Integration (SAE&I) delivery team of the Booz Allen Information/Infrastructure Assurance Center of Excellence (COE), which consolidated over 350 information security professionals in one location. The IA COE also houses Booz Allen's IA laboratories, including the engineering and integration laboratory used by Ms. Givans' team. Her team has over 75 staff providing system security engineering and integration services throughout a system's life cycle. These include security policy development and interpretation, security concept of operation definition, security requirements analysis and development, security architecture definition, security design and testing, security integration and testing, documentation development, security trade-off analyses, security metrics definition, capture and analysis, training related to engineering and integration, and secure electronic payment systems and smart card applications. Her team is working a number of Public Key Infrastructure (PKI) efforts within the DoD and Civilian Agencies and has PK-enabled several applications including the PTO electronic mail room that processes patent applications. Ms. Givans received her Bachelor of Science degree in Electrical Engineering from the Massachusetts Institute of Technology in 1984 and her Master of Science degree in Electrical Engineering from the Johns Hopkins University in 1989. Her formal publications include: "Using Security Metrics to Assess Risk Management Capabilities"
for NISSC '99.
|
 |
||
 |
 |
|||
 |
 |
|||
 |
||||