A detail-oriented Cyber Security professional with in-depth knowledge and experience in Governance Risk & Compliance (GRC), OMB, FISMA, NIST, HIPAA, PCI DSS, ISO 27001, and FEDRAMP standards, assists organizations/agencies with comprehensive evaluation of technical and non-technical Security Control Assessments (SCA), Assessment and Authorization (A&A), creating and managing Plan of Action & Milestones (POA&M), System Level Continuous Monitoring (SLCM), and Contingency Plan (CP). Experienced in Vulnerability Assessment and Analysis.
Technical Skills
Security Authorization Document (s): Hardware/Software Inventory List; Design Diagrams, Vendor Document(s), Secure Configuration Checklist (SCC), Vulnerability Scan Report; Security Test and Evaluation (ST&E); Project, Business Continuity plan (BCP) & Continuity of Operations Plan (COOP), Configuration Management Plan, and System Security Plan.
Assessment & Authorization Process and the System Development Lifecycle.
Risk Assessment, Risk Mitigation Analyses, and FEDRAMP.
Security Guidance: National Institutes of Standards and Technology (NIST) Special Publications IST 800-53, 800-53A, NIST 800-37, etc.
Excellent oral and written communication skills, and presentation Skills
Project Management
Experience
10/2018 to Current
INFORMATION SECURITY COMPLIANCE ANALYSTWarnermedia – OK, State, Claire
Guide System Owners and ISSOs through the Authorization and Accreditation (A&A) process, reviewing A&A packages using the six-step Risk Management Process (RMF).
Review Security Plans (SP), Contingency Plans (CP), Contingency Plan Tests (CPT), Privacy Impact Assessments (PIA), and Risk Assessment (RA) documents per NIST 800 guidelines.
Identify and document security risks in our environments, and advise Product, Engineering, and Infrastructure team on task/project prioritization
Assess evidence, interview personnel, and examine records to evaluate effectiveness of security controls and populate requirements in CSAM in accordance with NIST SP 800-53A Rev4.
Provide Plan of Action and Milestones (POA&M) support services to complete identified vulnerabilities to include tracking, updating, and managing the POA&Ms.
Review System Security Plans
Extract meaningful Information from technical reports and convert them to documentation or summary reports that convey issues/status to leadership.
Support reviews of Cloud Service Provider (CSP) documentation for compliance and work with stakeholders until documentation meets FedRAMP and agency A&A requirements.
07/2016 to 07/2018
INFORMATION SECURITY ANALYSTCarle Foundation Hospital – Eureka, IL,
Monitored controls to ensure continuous compliance with the security requirements by evaluating threats and vulnerabilities through Nessus scan results and work with the IT staff for mitigation actions.
Assisted with review of policy, security alerts, guidance, regulations, and technical advances in IT Security Management.
Assessed system vulnerability (Nessus and Web Inspect scans) by analyzing the weaknesses and recommending improvement measures to prevent exploitation.
Worked closely with ISSOs to update SSPs and provided status reports to management and team leads on SOP developments and other security-related topical issues.
Conducted meetings with IT team to gather documentation and evidence about control environment.
Worked independently and with larger teams to manage complex projects from start to finish.
Review system-related information security plans and IT Risk Management results to provide departments recommendations to align better with the University security, privacy practices, and legal and industry regulations.
05/2012 to 07/2016
MARKETING OPERATIONS COORDINATORCielo Talent – Manteno, IL,
Marketing Administration & Operations Coordinator
Wyndham Vacation Resorts - Oxon Hill, MDMay 2012 – July 2015
Worked closely with the Marketing Director, Marketing Manager and Marketing team to deliver daily and weekly reports.
Managed department-wide annual reports and EBI reports for the various marketing programs.
Managed major and minor department projects at multiple stages in projects lifespan.
Efficiently analyzed the status from reports and conducted arrival forecast for accountability and planning.
Ran Pilot programs for corporate office and worked with corporate team to implement at other sites.
Diligently led multi department efforts to ensure accurate marketing and sales numbers; Allocated the information to site and regional sales and marketing leaders.
Skillfully formulated all reports to the corporate office by deadline on a weekly basis with accuracy. Ensured accuracy of all reported arrivals and tours by monitoring multiple reporting systems daily.
Proactively maintained and submitted payroll commission sheets for all marketing coordinators weekly.
08/2009 to 05/2012
CONTRACTS COMPLIANCE COORDINATOR Wyndham Vacation Ownership – City, STATE,
Provided administrative support by implementing systems, procedures, and policies, completing projects in support of compliance auditors.
Consistently and accurately performed all maintenance on customer contracts, verified compliance of all contracts before submission to corporate office.
Performed internal compliance audits by reviewing records of company policy and noncompliance reports.
Managed and reported compliance breaches and exposures.
Efficiently submitted applications to credit analysts for verification and recommendation and corroborated information and accuracy of closing all documents. Sustained records of sales and property availability.
Education and Training
Expected in 05/2002
Bachelor of Science: Bachelor of Arts in Geography & Resource Devpt University of Ghana - Accra, Ghana, GPA:
Accomplishments
President, University of Ghana Alumni Association, North America
Any information uploaded, such as a resume, or input by the user is owned solely by the user, not LiveCareer. For further information, please visit our Terms of Use.