Seeking an Information System Security Analyst position in growth oriented organization with focus on System Certification & Accreditation, System Security monitoring and auditing; risk assessments; audit engagements, and
testing internal IT Controls.
Excellent problem-solving abilities
Excellent communication skills
Excellent diagnostic skills
IT Security Analysts, 04/2012
to Current Cybersoft Technologies corporation – Lanham,
Assisting organization and the ISSOs through the Certification and Accreditation (C&A) process, ensuring security controls are fully implemented on Information Systems; according to federal guidelines ( NIST SP 800-53and 53A, FIPS 199, and NIST Sp800-60 ).
Established relationship between the information system and the parent or governing organization that owns, manages, and/or controls the system.
Developed strategy for the continuous monitoring of security control effectiveness and any proposed or actual changes to the information system and its environment of operation.
Prepared the security control assessment report, document the issue, findings and recommendations and describe the information system boundary for the assessment.Sp800-53,Sp800-53A.
Conducted IT risk assessment and document the control and describe the boundary for the assessment.
Arranged meetings with the client team to gather evidence, develop test plans, testing procedures and document test results and exceptions.
Performed the technical tests through the manual methods without the use of automated tools.
Conducted walkthroughs, formulate test plans, document gaps, test results, and exceptions; and developed remediation plans for each area of testing.
Developed the audit plan and perform the General Computer Controls testing of Information Security, Business Continuity Planning, and Relationship with Outsourced Vendors.
Update and document the System Security Plan (SSP), Security Assessment Report (SAR), Plan of Action and Milestone (POA&M)(sp800-53A.
Analyzed and assessed the various assets within the systems boundaries and rigorously identifying all the possible vulnerabilities that exist within the system.
Identified gaps, develop remediation plans, and present final results to the IT Management team.
Performed System Test and Evaluation (ST&E) reports and other support to the IT Security.
Assisted in reviewing assessment reports and projects in identifying security risks and developing effective mitigation strategies.
Established compatibility with third party software products by developing program for modification and integration.
Ensured network, system and data availability and integrity through preventative maintenance and upgrades.
Implemented company policies, technical procedures and standards for preserving the integrity and security of data, reports and access.
eld Engineer, 01/2008
to 01/2011 National Cash Register – Germantown,
Upgraded hardware and software components as required.
Utilized test equipment and hand tools to performed Troubleshooting and diagnostics for retail terminal system.
Repaired and replaced PCB system IBM and DELL products.
Provides users an assistance solving computer related problems and malfunctions.
Installed hardware, serviced personnel, system integrators, and field engineer.
Analyze user/customer requirements related software and/or software system design.
Designed and configured products that meet specific customer need.
Helped to Test and monitoring computer components in detailed.
Conducted and reviewed to validate functional, operational, or user requirements.
Provided documentation on start-up, shut down and first level troubleshooting of processes to help desk staff.
Consistently met deadlines and requirements for all production work orders.
Managed creative projects from concept to completion while managing outside vendors.
Advocated for end-users to perform testing and problem analysis for server, desktop and IT infrastructure work.
Technician I, 01/2006
to 01/2008 First Level Technology
Performed logical tasks and system maintenance.
Installed new desktop, POS, and Printers to different companies and analyze problem determine technical solutions.
Solved troubleshooting issues on a variety of software and client products.
Upgraded hardware and software components of all the kinds of products.
Repaired and replaced component in the system Report all daily and weekly activity as required.
Bachelor of Science: Computer Science,
6 2006 Strayer University - Washington DC Computer Science
CompTIA Security + COMP001005628862: July, 2014 (ISC) 2 CAP Candidate December, 2014: Computer Traning Institute - Odenton,
Adobe, C, Excellent communication, hardware, computer networking, concept, client, DELL, Designing, documentation, DOS, engineer, expert
System, Flash, functional, hand tools, help desk, IBM, Information
Security, Information Security, Information Systems, IT Management, managing, meetings, access, Microsoft access, Microsoft excel, Microsoft word, network, personnel, policies, POS, Printers, problem analysis, problem-solving, processes, retail, Risk Analysis, Risk Assessment, SSP, strategy, system design, test
equipment, test equipment, Troubleshooting, upgrades, Website, website development, WordPerfect
Clearance: Top Secret (Active)