| | | 20,000+ Fresh Resumes Monthly | |
|
|
| |
Click here or scroll down to respond to this candidateCandidate's Name
Phone: PHONE NUMBER AVAILABLE EMAIL AVAILABLEClearance: SecretPROFESSIONAL SUMMARYExperienced cybersecurity professional with over 5 years of expertise in vulnerability management, risk assessment, and the implementation of NISTs Risk Management Framework(RMF) for FISMA compliance. Demonstrated success in identifying, assessing, and mitigating vulnerabilities across complex systems, ensuring the security of information systems within federal environments. Adept at developing security documentation, conducting in-depth security audits, and working cross-functionally to achieve compliance goals. Possess a strong commitment to continuous improvement and a proactive approach to securing IT infrastructures. KEY SKILLS Vulnerability Management: Nessus, Tenable, Vulnerability Scanning, Risk Analysis, Remediation Strategies Risk Management: FISMA, NIST SP-800 Series, RMF Process, FedRAMP, Continuous Monitoring, Risk Assessments Security Documentation: System Security Plans (SSP), Security Assessment Reports(SAR), Plan of Action & Milestones (POA&M), Security Impact Analysis (SIA) Compliance & Governance: Information Assurance, Policy & Procedures, Security Audits, NIST SP 800-37, SP 800-53 Tools & Technologies: eMASS, ServiceNow, Microsoft Office Suite, Cloud Security(FedRAMP), Network Security Communication & Leadership: Team Collaboration, Stakeholder Engagement, Technical Writing, Security Awareness Training.EDUCATION B.Sc. Political ScienceObafemi Awolowo University, 2013CERTIFICATIONS CompTIA Security+Demonstrates foundational knowledge in network security, risk management, and cryptography. Certified Ethical Hacker (CEH) (In Progress)Provides expertise in identifying vulnerabilities and executing penetration testing to assess the security posture of IT environments. Certified Information Systems Security Professional (CISSP) (In Progress) Recognized standard for cybersecurity management, focusing on vulnerability management, risk management, and compliance. CompTIA Cybersecurity Analyst (CySA+) (In Progress) Focuses on threat detection and response, emphasizing the importance of proactive vulnerability management.TECHNOLOGY/FRAMEWORK/APPLICATION SUMMARY Frameworks: NIST SP 800-37, NIST SP 800-53, FedRAMP, FISMA, HIPAA, FIPS 199, RMF Vulnerability Management Tools: Tenable Nessus, Qualys, Rapid7, CSAM Security Tools: eMASS, ServiceNow, SIEM Solutions, Firewall Management, Intrusion Detection Systems (IDS) Cloud Environments: FedRAMP Cloud-Based Systems, AWS, SaaS, PaaS Operating Systems: Windows, Linux, Unix Applications: Microsoft Office Suite (Word, Excel, PowerPoint), Project Management Tools (Jira, Salesforce) Security Standards: ISO 27001, GDPR, CCPA, PCI DSS, SOX PROFESSIONAL EXPERIENCESELECT DATA LLC, Baltimore, MDRole: Assessment & Authorization Analyst Dec 2017 Sept 2020 December 2017 May 2018 Led vulnerability assessments using Tenable Nessus, identifying critical vulnerabilities and coordinating remediation efforts across teams. Began implementing Risk Management Framework (RMF) in accordance with NIST SP 800-37, ensuring comprehensive security controls for information systems. June 2018 November 2018 Continued leading vulnerability assessments and coordinating remediation efforts. Developed and managed Plan of Action and Milestones (POA&M) to address security weaknesses, reducing the organizations risk profile by 30%. Conducted security audits and reviews of system configurations, identifying gaps and recommending improvements to enhance system security. December 2018 May 2019 Collaborated with system owners and ISSOs to gather and submit ATO packages, ensuring timely approval from the Authorizing Official (AO). Drafted and maintained critical security documentation, including System Security Plans(SSP), Security Assessment Reports (SAR), and Security Impact Analysis (SIA). June 2019 November 2019 Continued drafting and maintaining security documentation. Provided mentorship and training to junior security analysts, enhancing the teams capability in vulnerability management and risk assessment. December 2019 September 2020 Finalized the implementation of RMF and continued coordinating vulnerability assessments and remediation efforts. Continued providing mentorship and ensured the completion of ATO packages and security documentation.REFERENCESAvailable upon request. |
