Hi, my name is

Reece Niemuth

Cybersecurity Professional

I build and secure cloud and on-prem systems by combining security engineering, automation, and risk management to deliver scalable, defensible security architectures.

Download Resume
LinkedIn GitHub Credly

About Me

I’ve been a computer nerd my whole life. Started tinkering with old tower PCs in my grandfather’s garage, built gaming rigs with friends, got into robotics and electronics in high school. After serving in the Marine Corps as an engineer focused on electronics, I discovered cybersecurity through all the “cyber warfare” talk happening in the military. It clicked immediately: a field that combined my love for technology, protecting critical systems, and the constant hunt for better tools and solutions.

Now I work as a Technical Information System Security Officer (ISSO) and hybrid cybersecurity professional, specializing in DoD RMF, JSIG, NIST SP 800-53, and STIGs across SAP and classified environments. I blend risk management and compliance with hands-on engineering, building automation, dashboards, and security tooling using Python, PowerShell, Bash, Splunk, Nessus, SCAP, and OpenSCAP. My goal is to translate dense security requirements into practical, code-driven solutions that actually make people’s lives easier.

What gets me out of bed is hearing someone say, “This is great, this will save us so much time.” I love the relentless pace of this field, the endless stack of knowledge to master, and the challenge of staying ahead of the next big tool or threat. Right now, I’m pursuing my Doctorate in Cybersecurity Analytics while building passion projects in AI-assisted security tooling and federal compliance automation.

When I’m not working, I’m in my homelab running the “Patriot Command Operations System (PCOS)” — a fully documented environment where I practice the entire system lifecycle per NIST and RMF without risking production systems.

Core Competencies:
  • RMF
  • NIST 800-53
  • JSIG
  • STIG
  • AWS Security
  • Python
  • PowerShell
  • Bash
  • Splunk
  • Nessus
  • SCAP
  • OpenSCAP
  • Linux
  • Automation

Professional Experience

Information Systems Security Officer II (Technical) - Lockheed Martin
2025 - Present

Serve as the technical ISSO for Special Access Program (SAP) and collateral systems, enforcing NIST RMF and JSIG requirements through continuous monitoring, STIG engineering, vulnerability remediation, and ATO sustainment.

  • Lead security control design and implementation
  • Cross-domain security engineering coordination
  • Automated compliance visibility using Splunk, SCAP/STIG tooling, and Nessus
  • Maintain defensible system architectures
Trust & Safety / Cloud Information Security - Amazon Web Services
2023 - 2025

Led GRC-focused security operations for AWS cloud resources (EC2, ELB, Lambda, CloudFront, S3), proactively investigating, sandboxing, and mitigating malicious activity.

  • Resolved or contributed to 10,000+ cloud security incidents
  • Investigated intrusion attempts, phishing, botnet C2, and content-based abuse
  • Customer-facing cybersecurity consulting and secure architecture guidance
  • Resource hardening and recovery support for compromised environments
Network Operations Center (NOC) Technician - Voxai Solutions Inc.
2022 - 2023

Supported on-premises network administration for Public Trust-cleared contract customers (including USPS) and cloud-based contact center environments built on Genesys Cloud CX.

  • Monitoring, incident response, and systems administration across hybrid environments
  • Developed and maintained cloud IVR call flows and routing logic
  • Contributed to service automation and platform reliability
Utilities Engineer - United States Marine Corps
2018 - 2022

Supported mission-critical infrastructure and power systems for secure communications and digital operations in domestic and international environments.

  • Electronic troubleshooting, preventive maintenance, and fault isolation
  • Led Marines while ensuring system availability and operational security
  • Maintained resilience of critical infrastructure under strict procedures

Education

George Washington University
Expected December 2027
Doctor of Engineering (D.Eng.) in Cybersecurity Analytics
George Washington University
Conducting original, applied research on business-impacting cybersecurity problems, with emphasis on automation and AI/ML-enabled security products, federal compliance optimization, and modernizing outdated practices across secure, classified, and national security environments.
Western Governors University
Master of Business Administration (MBA), IT Management
Western Governors University
Focused on enterprise IT operations, governance, and executive decision-making, strengthening business acumen and strategic leadership to complement military leadership experience.
Western Governors University
Bachelor of Science (B.S.), Cybersecurity and Information Assurance
Western Governors University
Broad, hands-on curriculum spanning AI/ML concepts, data analytics, cloud security, networking, digital forensics, penetration testing, and CTF-based adversarial thinking.
Texas Christian University
Undergraduate Coursework, Computer Science
Texas Christian University
Completed two years of CS coursework including assembly-level programming, data structures, and Java, building a strong foundation in low-level systems and algorithms.

Projects

Cyber Knowledge Share (CKS)
Knowledge Management RAG/AI RMF NIST
Cyber Knowledge Share (CKS)
Enterprise cybersecurity knowledgebase supporting ISSOs, ISSMs, IT staff, and leadership with authoritative, workflow-aligned guidance across governance, RMF, STIGs, IR, and continuous monitoring. Includes the ISSO Knowledge Assistant, a RAG-based AI system using Meta Llama 3.3 (70B) constrained to approved policy sources.
Patriot Command Operations System (PCOS)
Homelab RMF NIST 800-37 STIG
Patriot Command Operations System (PCOS)
Self-hosted, multi-system homelab enclave emulating a federal information system with realistic security boundaries, logging, vulnerability management, and lifecycle controls. Full NIST RMF lifecycle with complete documentation including SSPs, SARs, RARs, POA&Ms, and STIG/SCAP reports.
Bastion Insight Engine (BIE)
Compliance Automation In Progress Python
Bastion Insight Engine (BIE)
Centralized compliance automation platform modernizing fragmented federal cybersecurity workflows across RMF, STIGs, vulnerability management, and audit preparation. Features normalized evidence ingestion, explainable risk modeling, and continuous audit policy verification.
AI Consensus
AI/ML Multi-Model Decision Support
AI Consensus
Multi-model AI interface that queries multiple LLMs in parallel and synthesizes consensus answers through structured comparison and voting. Identifies strongest core responses and valuable enrichments to reduce single-model bias and improve reasoning quality.

Certifications

CISSP-ISSEP
CISSP-ISSEP
Information Systems Security Engineering Professional - (ISC)2
CISSP
CISSP
Certified Information Systems Security Professional - (ISC)2
CCSP
CCSP
Certified Cloud Security Professional - (ISC)2
SSCP
SSCP
Systems Security Certified Practitioner - (ISC)2
CompTIA SecurityX
CompTIA SecurityX
Advanced Security Practitioner (formerly CASP+)
CompTIA PenTest+
CompTIA PenTest+
Penetration Testing Certification
CompTIA CySA+
CompTIA CySA+
Cybersecurity Analyst Certification
CompTIA Security+
CompTIA Security+
Core Cybersecurity Certification
CompTIA Network+
CompTIA Network+
Networking Concepts and Operations
CompTIA A+
CompTIA A+
IT Fundamentals & Technical Support
CompTIA Project+
CompTIA Project+
IT Project Management Certification
ITIL 4 Foundation
ITIL 4 Foundation
IT Infrastructure Library v4 - AXELOS
Genesys Cloud Professional
Genesys Cloud Professional
Genesys Cloud CX Platform Certification
Linux Essentials
Linux Essentials
Linux Fundamentals - LPI

Get In Touch

Feel free to reach out! Whether you have a question about cybersecurity, want to collaborate on a project, or just want to connect.
Email Me