Information Security Analyst Resume Example

Resume Score: 80%

Love this resume?Build Your Own Now
PO
INFORMATION SECURITY ANALYST
Professional Summary

Experienced Information Security Analyst with a passion for aligning security architecture plans and processes with security standards and business goals. Talented individual with over five years of experience in security risk assessment, risk analysis and risk management. Extensive experience developing and testing security framework for cloud-based software. Versed in robust network defense strategies.Excellent reputation for resolving problems, improving customer satisfaction, and driving overall operational improvements.

Work History
Ford Motor Company (Contract) - Information Security AnalystDearborn, MI02/2018 - Current
  • Operate Risk Management Framework using NIST 800 - 37 as Confidential guide and FIPS 199 as Confidential guide to categorize information systems.
    Classify information Systems using RMF processes to ensure system Confidentiality, Integrity and Availability
  • Document selected security controls in the SSP that was earlier created using Confidential 800-18
  • Effectively engaging assessment processing & preparing for assessment, conducting assessment, communicate assessment results
  • Using implementation section of the (SSP) System Security Plan in addressing how each control is implemented (frequency of performing controls, control types and status)
  • Prepare Security Assessment Reports (SAR) in which all the weaknesses are report
  • Create Plans of Actions and Milestones to tracing corrective action and resolving weaknesses and findings
  • Determine threat sources and applying security controls to reduce risk impact
  • Use POA&M tracking tools like CSAM (Cyber Security Assessment and Management), Excel spread sheet to make sure the POA&M is not in delay status
  • Ensure that controls are implemented correctly, functioning as intended and producing the right results
  • Equipped and organized facility to comply with company strategy for online and offline quality controls
  • Cultivated and nurtured relationships with customers in strategic vertical markets to support ongoing definition of differentiated product value.
JP Morgan Chase ( Contract) - Security Assessor/ AnalystDetroit, MI04/2016 - 01/2018
  • Observe security solutions; SIEMs, firewall appliances, intrusion prevention systems, data loss prevention systems, application logs, and custom monitoring tools.
  • Configuring and monitoring Security Information and Event Management (SIEM) platform for security alerts.
  • Scan and monitor system vulnerabilities on servers and infrastructure devices using a Threat and Vulnerability security solution.
  • Follow detailed processes and procedures to analyze, escalate, and assist in remediation of critical information security incidents.
  • Perform initial risk assessment on new threats and vulnerabilities, perform assessment phase of Vulnerability & Threat Management process
  • Intrusion detection and prevention and Network Security Products (IDS/IPS, firewalls, etc)
  • Work with other operational teams to resolve incidents and report on events
  • Monitors and assists in analyzing security systems for IDS/IPS and firewalls to ensure proper connectivity and configuration
Washington Tech Solutions (consultant) - Cyber Security AnalystWashington,DC, DC12/2014 - 02/2016
  • Generated security documentation, including: security assessment reports; system security plans; contingency plans; and disaster recovery plans.
  • Supported security tests and evaluations (ST&Es).
  • Perform Risk Assessments to identify system vulnerabilities and create Risk Assessment Reports
  • Assist in creating Plan of Actions & Milestones (POA&M) for system vulnerabilities..
  • Provided security support and evaluation to development teams in order to integrate information assurance/security throughout the System Life Cycle Development of major and minor application releases.
  • Ensure that information system security principles are incorporated into the SDLC process
  • Implemented and checked information system security plans to ensure NIST control requirements are met.
  • Participated in creation of device hardening techniques.
Skills
  • Knowledgeable experience on Windows, IPS/IDS - Firewalls, DLP, Tenable Security Center, Microsoft Office, Nessus Vulnerability Management, splunk tool, HIPAA understanding, Authentication Protocols, Multi-factor Authentication,Two-factor Authentication.
  • Well experienced and in-depth knowledge of designing, upgrading,maintaining and implementing network devices
  • Skilled in analytical and organizational skills as well as familiarity with a wide variety of applications, database, operating systems and network devices.
  • Efficient, responsible and accountable, with demonstrated knowledge in information security artifacts
  • Fast learner and highly adaptive with ability to multi-task whilst working with little or no supervision
  • Very knowledgeable in developing documentation with processes and procedures, also familiar with proposing, implementing automation features in a large enterprise environment.
Education
2013University of BueaCameroonBachelor of Science: Information Technology
Certifications

CAP cert (in progress)

CISSP (Later)

Resume Overview

Companies Worked For:

  • Ford Motor Company (Contract)
  • JP Morgan Chase ( Contract)
  • Washington Tech Solutions (consultant)

School Attended

  • University of Buea

Job Titles Held:

  • Information Security Analyst
  • Security Assessor/ Analyst
  • Cyber Security Analyst

Degrees

  • Bachelor of Science : Information Technology

Similar Resumes