Jose Rodriguez

About Me

I'm a Cybersecurity Specialist and United States Marine Corps veteran with over eight years of experience securing mission-critical systems across federal, defense, and healthcare environments. My career has been built on a foundation of discipline, attention to detail, and a deep commitment to protecting the people and missions that depend on secure information systems. I currently hold an active Top-Secret clearance and bring proven expertise across the full Risk Management Framework (RMF) lifecycle, from control selection and assessment through authorization and continuous monitoring.

My passion lies in Governance, Risk, and Compliance, where strategy, policy, and technical execution come together. Most recently, as a Senior Cybersecurity Supervisor with COLSA supporting the Naval Air Warfare Training Systems Division, I led security operations for a team of more than 20 cybersecurity analysts and system security representatives, managing RMF packages in eMASS that resulted in consecutive ATO approvals. Earlier in my career as an Information System Security Officer at Naval Medical Center Camp Lejeune, I served as the primary cybersecurity advisor to program managers and senior leadership, where I learned firsthand how strong governance directly enables mission success.

What drives me is the intersection of people, process, and technology. I genuinely enjoy translating complex frameworks like NIST 800-53, NIST 800-37, and CNSSI 1253 into practical, sustainable programs that organizations can actually live with day to day. I'm equally passionate about mentoring the next generation of GRC professionals, building security awareness programs that resonate with end users, and continuing to grow my own expertise. I hold CISSP and CISM certifications, multiple AWS credentials, and I'm currently pursuing my B.S. in Information Technology and Security at Campbell University.

Experience Highlights

• Supervised cybersecurity operations for 20+ analysts and system security representatives across DoD training and operational systems
• Managed full RMF lifecycle for multiple mission-critical applications, earning consecutive ATO approvals
• Led end-to-end Quality Assurance reviews of RMF artifacts in eMASS prior to Authorizing Official approval
• Served as primary cybersecurity advisor to program managers, system owners, and senior leadership at Naval Medical Center Camp Lejeune
• Developed and maintained System Security Plans (SSPs), Security Assessment Reports (SARs), and POA&Ms for DoD authorization packages
• Implemented cybersecurity controls protecting 2,000+ end users across clinical and administrative healthcare systems
• Coordinated incident response, impact analysis, and corrective action planning for classified and unclassified defense programs
• Built security awareness programs covering phishing prevention, social engineering, and best practices
• Conducted vulnerability management using ACAS/Nessus, SCAP, Evaluate-STIG, and Vulnerator across enterprise environments
• Mentored ISSOs and junior cybersecurity staff, advancing workforce readiness in high-consequence environments

Get in Touch

I'm always open to connecting with fellow GRC and cybersecurity professionals, hiring managers, or anyone looking to talk shop about RMF, compliance, or building stronger security programs. The best ways to reach me: • Email: jose.a.rodriguez14@hotmail.com • LinkedIn: linkedin.com/in/jose-rodriguez-01097233