| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidatePROFESSIONALSUMMARYAn Information Security Analyst with over a decade of experience,specializing in vendor risk management and information security auditing. Leveraging a deep understanding of the NIST 800-53 framework, Abena excels in conducting risk assessments, developing security assessment reports, and implementing enterprise risk management controls. Known for a methodical approach to enhancing security protocols and collaborating effectively with stakeholders to mitigate risks, this analyst is poised to contribute significantly to cybersecurity initiatives. SKILLSVulnerability ManagementAudit Testing of ControlsGap AnalysisNerc-CIP frameworkIT General Controls AuditRegulatory Compliance ProgramManagementDesigning and Tailoring SecurityControlsAnalyzing SOC and PenetrationTest ReportsAnalytical ThinkingExtensive Understanding of RiskManagement Framework(RMF)/Cybersecurity/IT Security &NIST 800 Special Publication SeriesPCI DSS Management ReportsEngineering Periodic Testing ofControlsAssessing Vendors for Security RiskInternal and External Auditors ISO27000 AuditsEnterprise Risk ManagementControlsSupply Chain ManagementWORK HISTORYCyber Security Analyst (SOC) / DTE Energy - Hybrid, MI / 03.2023 - Current Proactively monitor and analyze security alerts and events in real-time to identify threats and vulnerabilities before they impact the organization, demonstrating strong sense of urgency and attention to detail. Collaborate with other departments to conduct simulated cyber attack exercises to identify vulnerabilities and improve incident response proceduresCollaborate with cross-functional teams to develop and implement cybersecurity strategies that align with business objectives and adhere to industry regulations and best practicesDevelop and implement cybersecurity training programs for employees to ensure awareness of best practices and new threats, ultimately enhancing organization's overall security postureConduct regular training sessions for employees on cybersecurity best practices, emerging threats, and incident response protocols to enhance organization's overall security posture and reduce human error risksConduct regular security assessments and audits to identify potential Candidate's Name
EMAIL AVAILABLE PHONE NUMBER AVAILABLE Leander, TX 78641 vulnerabilities and recommend proactive measures to mitigate risks, providing valuable insights to improve organization's cybersecurity posture and resilienceContinuously research and stay updated on latest cybersecurity trends, threats, and Nerc-CIP/NIST framework to provide cutting-edge solutions and proactive security measures for the organization, showcasing commitment to ongoing professional development and enhancement of cybersecurity expertise.Analyze a variety of network and host-based network security appliance logs (Firewalls, NIDS,HIDS, SYS Logs etc) to determine correct remediation actions and escalation paths for each incidentVendor Risk Associate (GRC Assurance Team) / State Of Michigan(DTMB) - Remote, MI / 08.2018 - 03.2023Facilitated vendor onboarding process by performing third-party party risk assessment of vendorsCollaborated with business owners to document vendor relationships, collect supporting risk assessment documentation, and monitor vendors' performanceDeveloped Vendor Risk Assessment Report and escalated issues when necessaryCompiled Risk Assessment Reports (RAR) and consulted with vendor's primary contact about assessment findings.Revised/ reviewed policies, procedures and standards annually Established performance metrics for evaluating vendor effectiveness, aligning supplier goals with overall business objectives. Analyzed supplier risk profiles to ensure stability within the supply chain while mitigating potential disruptions caused by unforeseen circumstances such as natural disasters or geopolitical events. Information Security Auditor / Google/Accenture - Remote, CA / 01.2018- 08.2018Conducted audits on (IT) operating system (OS) platforms and operating procedures in accordance with established standards for efficiency, accuracy, security, and risk mitigationConducted kick-off meetings in order to categorize systems according to NIST requirements of Low, Moderate, or High Risk Evaluated IT infrastructure in terms of risks to about 80 departments and establish controls to mitigate lossDetermine and recommend improvements to enterprise risk management controlsDesigned and performed information technology internal Controls test work for banking /Public Sector clients using PCI DSS as guide Identified and Reported threats /Vulnerabilities applicable to Systems. IT Security - Project Coordinator / JP Morgan Chase - Chicago, IL / 06.2014 - 01.2018Developed Security Assessment Reports (SAR) and Plan of Action and Milestone reports (POA&M)Wrote about 250 technical narratives to document processes and design changesKept projects on schedule by managing deadlines and adjusting workflowsSupervised multiple projects from project start through delivery by prioritizing needs and delegating assignmentsProvided input and feedback on departmental initiatives, directives and strategies to contribute to project successCreated and monitored Project Charters, story Boards from start to finish. EDUCATIONNational Able Network Power BI/Data Analytics - Chicago, IL / 06.2020 CertificationUniversity of Ghana - Accra,Ghana / 05.2012Bachelor Of Arts: Information Technology Studies And Sociology CERTIFICATIONSCISM,CISA, EXCEL, Certified in Cyber Security, CISSP in Progress |
