SEARCH

Information Security Analyst Resume Example

Resume Score: 80%

Love this resume?Build Your Own Now
INFORMATION SECURITY ANALYST
Summary
Experience
January 2020 to Current
Michael Page InternationalJersey City, NJInformation Security Analyst
  • Determine security categorizations using the FIPS 199 and SP 800 60 as a guide in the risk management framework.
  • Perform Privacy Threshold Analysis (PTA), E-Authentication with business owners and selected stakeholders.
  • On an on-going basis, coordinate with business process owners to ensure timely identification and remediation of jointly owned risk related issues and action plans (POA&M).
  • Assist System Owners and ISSOs through Security Assessment and Authorization (SA&A) Process, ensuring that Operational, management and technical control securing sensitive Security Systems are in place and being followed according to the Federal Guideline (NIST SP 800-53).
  • Organize and participate in kick-off meeting with CISO and systems stakeholders prior to assessment engagement.
  • Identify and advise on major security incidents, which could impact day-to-day services and operations.
  • Perform security testing and analyze results to identify vulnerabilities and violations of information security.
  • Work to determine strategies and takes measures to mitigate risk.
  • Prepare documentation and review System Security Plan (SSP), Security Assessment Report (SAR), Plan of Action and Miles tones (POA&M), Authorization letter/memorandum (ATO).
December 2017 to December 2019
TEKsystems Inc.New York, NYISSO
  • Conducted kick-off meetings to collect systems information and categorize systems based on NIST SP 800-60.
  • Developed security control baseline and tested plan used to assess and implement security controls.
  • Created and updated the following Security Assessment and Authorization (SA&A) artifacts; FIPS.
  • 199, Risk Assessments Report (RAR) Privacy Threshold Analysis (PTA), Privacy Impact Analysis.
  • PIA), Contingency Plan, Security Test and Evaluations (ST&Es), E-Authentication, Plan of Action and Milestones (POAMs).
  • Met with the system team to collect evidence, develop test plans and procedures and document test results.
  • Designed and Conducted walkthrough formulated test plans, tested results and developed remediation plans for each area of the testing.
  • Conducted FISMA complaint security control assessments to ascertain the adequacy of management, operational, technical privacy controls.
  • Examined events logs for irregularities.
  • Identified irregularities are then reported as incidents.
  • The incident response is then initiated to mitigate these irregularities.
  • Involved in security incident management in order to mitigate or resolve events that have the potential to impact the confidentiality, availability, or integrity of information technology resources.
  • Created and maintained security metrics in order to help senior management to make decisions.
  • Provided support to internal and external audit teams in gathering evidence to validate controls.
February 2014 to November 2017
Bronx Lebanon HopsitalThe Bronx, NYInformation Security Analyst

• Responded to external requests for information required by the organization for its regulatory filings.

• Maintained database and other reference materials related to legislative and regulatory issues and compliance.

• Provided analysis and support to merchants on product compliance laws, regulations, and best practices.

• Familiarity with HIPAA/HITECH Act provisions regarding PHI security and compliance.

•Completed released of information requests including retrieving patient's medical charts and returning charts, copying/scanning medical records accurately and correctly, according to requests, established procedures, and established standards of quality and productivity; and electronically transmits medical record to processing operations.

• Performed quality checks on all work to assure accuracy of the release, confidentiality, and proper invoicing.

• Maintained awareness of current legislative and regulatory requirements.

• Worked knowledge of Health ports connects, esmartlog, smart link, and rep online and centricity software.

Education and Training
August 2012
Russell Sage College
Nursing
Bachelor of Science
Expected in 2022
New Jersey Institute Of Technology
Newark, NJCyber Security
Master of Science
Certifications

CompTIA Security+ Certified

Certified Authorization Professional (CAP) – ongoing

SKILLS

A proven project and team lead with aptitude for good customer service, leadership and excellent communication (both oral and written) skills. Functional areas of expertise include but not limited to:

· Information Systems Security

· Vulnerability Assessment

· Privacy

· Project Management and Support

· Security Life Cycle

· Systems Risk Assessment

· Systems Development Life Cycle

TECHNOLOGY SKILLS


Operating System: Splunk, Xacta, Nessus Nmap, Nsat, Csam, Anti-Virus Tools

Browsers: Internet Explorer, AOL, Mozilla Firefox, Google Chrome

Software: Microsoft Office

Build Your Own Now

DISCLAIMER

Resumes, and other information uploaded or provided by the user, are considered User Content governed by our Terms & Conditions. As such, it is not owned by us, and it is the user who retains ownership over such content.

Resume Overview

Companies Worked For:

  • Michael Page International
  • TEKsystems Inc.
  • Bronx Lebanon Hopsital

School Attended

  • Russell Sage College
  • New Jersey Institute Of Technology

Job Titles Held:

  • Information Security Analyst
  • ISSO

Degrees

  • Nursing Bachelor of Science
    Cyber Security Master of Science

Similar Resumes

View All
Senior-Information-Security-Analyst-resume-sample

Senior Information Security Analyst

Accenture Services Pvt Ltd, Pune

Huntington Beach, California