Candidate Information Name Available: Register for Free Title Information Security Risk Management Target Location US-MN-Brooklyn Park Email Available with paid plan Phone Available with paid plan	20,000+ Fresh Resumes Monthly     View Phone Numbers     Receive Resume E-mail Alerts     Post Jobs Free     Link your Free Jobs Page     ... and much more Register on Jobvertise Free
Search 2 million Resumes Keywords: City or Zip:	Related Resumes Information Security Risk Management Minneapolis, MN Information Security Engineer Saint Paul, MN Information Security Isanti, MN Information Security Vulnerability Management Saint Paul, MN Information Technology Network Security Minneapolis, MN Cyber Security Compliance Analyst Woodbury, MN ICT SECURITY AND BCP SPECIALIST (Remotely) Shakopee, MN

EMPLOYMENT HISTORYJAN Street Address  - NOV 2022Information Security Risk Compliance Analyst, MoneyGram International, Texas (Remote) Governance Monitored governance processes, recommended improvements, and collaborated with business units for alignment with corporate governance objectives. Conducted and facilitated compliance audits and assessments to evaluate vendor controls against NIST SP, ISO 27001, PCI DSS, SOC 1, 2, 3, and other security frameworks.Compliance Monitored changes in regulatory environments and assessed potential impacts through regulatory surveillance, audit reviews, impact assessments, risk management, and technology integrations. Collaborated with teams to understand compliance requirements and assist in achieving compliance with GDPR, HIPAA, PCI DSS, ISO 27001, SOC 1 & 2 through GAP assessments and improvements. Risk Management Identified, assessed, and documented risks by defining risk criteria and using historical data, interviews, and industry reports. Developed and implemented risk assessments, scoring methodologies, and evaluated risk impacts on financial, operational, and other relevant areas. Performed PCI-DSS Self-Assessment Questionnaire (SAQ) evaluations, gathered evidence, and produced Reports of Compliance. Third-Party Compliance Conducted thorough risk assessments of third-party vendors to identify potential compliance risks. Evaluated vendors' security policies, procedures, and practices against industry standards and regulations. Monitored third-party compliance with contractual obligations, industry standards, and legal requirements. Performed due diligence on prospective vendors to assess their compliance posture. Managed and investigated compliance-related incidents involving third-party vendors. MAY 2021 - NOV 2021Information Security Analyst, Marigold Solutions Inc., VA (Remote) Examined Nessus vulnerability scan results, collaborating with Remediation Team to resolve vulnerabilities. Assessed SIEM tools to investigate incidents and determine threats. Developed vulnerability reports using CVEs, formulating patching methods. Created incident response plans, workflows, and standard operating procedures (SOPs). Reviewed internal policies to understand IT environment and organizational security requirements. Authored Security Assessment Reports (SAR) and Plans of Action & Milestones (POA&M). JUN 2017 - NOV 2020Environmental Health and Safety Assistant Director, University of Minnesota Children's Hospital, Fairview Monitored security logs for HIPAA breaches. Designed and implemented training programs and procedures for regulatory compliance. Updated policies and procedures on the Epic system. Conducted risk assessments and continuous monitoring to ensure effective controls. 1716 Laramie Trail, Brooklyn Park, UnitedStates, 55444EMAIL AVAILABLEPHONE NUMBER AVAILABLECandidate's Name
INFORMATION SECURITY PROFESSIONALPROFESSIONAL SUMMARYInformation Security Professional with over 5 years of experience specializing in risk management, security auditing, and compliance. Proficient in leveraging skills in security architecture and cyber threat intelligence to enhance organizational security postures. Demonstrates a strong commitment to maintaining security standards across various frameworks including ISO 27001, SOC, and PCI-DSS. Performed safety inspections and audits; ensured compliance with regulations. Investigated workplace accidents and environmental incidents, recommended preventive measures. Collaborated with HR, Operations, and Facilities for a holistic EHS approach. SEP 2013 - MAY 2016Computer Support Specialist, Carley Inc., MN Reviewed security policies and updated software. Functioned as main IT contact for issue resolution and vulnerability remediation. Conducted periodic risk assessments and continuous monitoring. Recommended network security standards and upgrades to management. EDUCATIONJAN 2023 - JUL 2023IT Cybersecurity Bootcamp, University of Minnesota-Twin Cities Graduated with CertificationBachelor of Science, Walden UniversityIT Cybersecurity Bootcamp, Crest Consulting Group, MD COURSESAUG 2022 - SEP 2024Security+ at CompTIASKILLSRisk Management ComplianceCyber Threat Intelligence Network SecuritySecurity Operation Security AuditingAssessment Security ArchitectureSocial Engineering AwarenessL INKSLinkedIn