Information Security Analyst resume example with 7+ years of experience
JessicaClaire
Montgomery Street, San Francisco, CA94105(555) 432-1000, resumesample@example.com
Professional Summary
Information Security expert with experience across full information systems lifecycle. Highly skilled in network security and IT risk management. Demonstrated ability to identify business risks and compliance issues and design proactive solutions and hands on experience utilizing the NIST Risk Management Framework, and the Cybersecurity Framework (CSF).I am self-motivated and deadline-oriented with track record of on-time deliverables.
Skills
Windows / Mac / Linux /Juniper /Firewalls / IAM (e.g., Active Directory, RSA, Okta) /Microsoft Office, Citrix, Ticketing Tools (e.g. Salesforce, ServiceNow), Infoblox, VMWare,
Data security
Erecting firewalls
Developing security plans
Configuration management
Network maintenance
CISCO router management
IDS/IPS
Troubleshooting
System security plan (SSP) documentation
Risk Management Framework (NIST 800-37)
System Categorization (FIPS 199 & NIST 800-53)
Control Selection and Implementation(FIPS 200 & NIST 800-53)
Control testing (NIST 800-53A)
Working Knowledge of ST&E, SAR, SAP, BCP/DRP
Information security
POAM management
Incident Response Handling
Encryption
Monitoring computer viruses
Protecting networks
Risk mitigation
Work History
01/2018 to 02/2020Information Security AnalystActionet, Inc. | Dallas, TX,
Conducted network vulnerability assessments using tools to evaluate attack vectors, identify system vulnerabilities, and develop remediation plans and security procedures
Participated in continuous monitoring of critical systems (e.g., e-mail, database, web servers, etc) and changes to highly sensitive system security controls to ensure appropriate system administrative actions
Conducted routine social engineering tests and clean-desk audits
Developed and implemented new security policies, standards, and procedures
Collaborated with business units to determine business continuity requirements
Conducted business impact analysis on all assigned mission critical systems and documented recovery priorities of the key processes, applications and data
Conducted security audits to identify vulnerabilities
Performed risk analyses to identify appropriate security countermeasures
Participated in system configuration to enable data encryption and erected firewalls to ensure confidentiality of information systems
Managed firewall, network monitoring and server monitoring both on- and off-site
Recommended network security standards and upgrades to management
10/2016 to 12/2017IT Support SpecialistAcn Energy Inc | Concord, CA,
Provided daily intermediate computer support to users through installation, troubleshooting, and support of networked computing devices and stand-alone computing devices which includes all workstations and all mobile computing devices, and printer
Effectively organized problem determination/resolution steps to most effectively provide excellent customer service
Participated in provisioning and deprovisioning user accounts utilizing Active Directory(AD)
Assisted in configuration of Citrix and VPN remote access clients
Patched software and installed new versions to eliminate security problems and protect data
Explained technical information in clear terms to non-technical individuals to promote better understanding
Removed and replaced malfunctioning components to correct hardware problems
Responded to support requests from end users and patiently walked individuals through basic troubleshooting tasks
07/2012 to 07/2016RMF AnalystCore4ce.Com | North Charleston, SC,
Analyzed discovery scan data and vulnerability data to determine unusual use configurations, discovery of aged software, patch validation, and proper identification of high-severity vulnerabilities
Assessed system compliance against NIST and agency's security requirements to include the NIST 800-53 controls
Participated in work group meetings to identify, plan, and execute strategies in response to emerging RMF policies
Work collaboratively with system owners and other external contractors to develop and update system RMF documentation to include Security Plans, Implementation Plans, Plans of Action and Milestones (POA&Ms), and Risk Assessment Reports
Developed draft implementation policies and procedures (including artifact templates) as needed to support the Risk Management Framework (RMF) Implementation Strategy
Provide guidance on projects and programs through successful assessment and authorization of systems components for Authority to Operate (ATO)
Participated in developing security artifacts to support the IA program to include System Security Plans (SSP), Security Assessment Reports (SAR), Risk Assessment Reports (RAR), Plan of Action and Milestones (POA&M), System Design and Installation Procedures, System User Guides, Privileged User Guides, Security Test Procedures and other documents as needed
Researched, review, monitor, and report on industry best practices, latest cyber security developments and trends, standards, and guidelines, and apply these to the Federal environment
Provide subject matter expertise on application security vulnerabilities and security controls
Education
Expected in 04/2011Bachelor of Science | Information TechnologyFranklin University, Columbus, OH, GPA:
Any information uploaded, such as a resume, or input by the user is owned solely by the user, not LiveCareer. For further information, please visit our Terms of Use.