Self-motivated and passionate Information Assurance Analyst with excellent communication skills. Combines professionalism along with interpersonal skills to accomplish the mission, vision, and goal of the organization. Ability to motivate, lead, and work with other team members to achieve the overall objective of securing IT Systems. Seeking to utilize my background and experience in a progressive and engaging position. Adept attention to detail, and passion for excellence. Skilled at detection of security vulnerabilities and risk while maintaining confidentiality, integrity, and compliance with company guidelines.
|
● POA&M Preparation and Update. Prepared Plan of Action and Milestones (POA&M), based on the results of the security assessment report (SAR).
● Updated the plan of action and milestones based on the documented changes to the system (including hardware, software, firmware, and surrounding environment) and the results of the continuous monitoring process.
● Supported the remediation actions to correct assessment findings and develops supporting plan of action and milestone (POA&M) reports. Organizes authorization package for ATO of the client’s systems.
● Reviewed vulnerability scanning results and identifies weaknesses in our client’s system and recommends corrective actions. Supports the penetration testing group with information gathering (reconnaissance) and scanning using Nessus and Nmap tools.
● Experienced with interpreting vulnerability reports extracted from Nessus Scanning, prioritizing reports-based security impact level of low, moderate, high.
● Coordinated with various stakeholders to remediate findings on assigned systems.
● Reviewed authorization documentation for completeness and accuracy for compliance.
● Executed, examined, interviewed, and tested assessment methods by NIST SP 800-53A Revision 4 guidelines for executable test procedures.
● Ensured cyber security policies were followed, validated, implemented, and that security controls operated as designed.
● Reviewed information system security plans (SSP) as recommended by NIST SP 800-18 Revision 1 and mandated by OMB Circular A-130 using GRC tool, CSAM.
● Developed security assessment documentation such as Security Assessment Plan and Security Assessment Report (SAR) before and during assessment engagement.
● Supported the assessment team with proper artifact collection during Walkthrough, and evidence references security controls that are in-scope for assessment.
● Engaged in risk assessment activities and policy & procedure (P&P) reviews to identify gaps and risks within the IT environment and or system.
● Provided weekly briefs to senior management on security posture, highlighting high/ critical vulnerabilities, remediation snapshots, and compliant security controls.
By clicking Customize This Resume, you agree to our Terms of Use and Privacy Policy
Resumes, and other information uploaded or provided by the user, are considered User Content governed by our Terms & Conditions. As such, it is not owned by us, and it is the user who retains ownership over such content.
Many factors go into creating a strong resume. Here are a few tweaks that could improve the score of this resume:
resume Strength
By clicking Customize This Resume, you agree to our Terms of Use and Privacy Policy