Information Security Analyst Resume
3.00/5 (Submit Your Rating)
SUMMARY:
- A highly motivated and flexible individual with robust interpersonal communication and analytical skills seeking to acquire an Information Security Analyst position in order to have the opportunity to deliver high - quality innovative solutions
PROFESSIONAL EXPERIENCE:
Information Security Analyst
Confidential
- Expertise in NIST SP documentation: Perform assessments and document creation using NIST SP Rev.2.
- Conduct FISMA-based security risk assessments for various government contracting organizations and application systems - including interviews, tests and inspections; produced assessment reports and recommendations; conducted out-briefings. Assessments conducted following NIST 800 processes and controls
- Reviews and updated some of the system categorization using FIPS 199, Initial Risk Assessment, E-authentication, PTA, PIA, SAR, SSP, SAP& POA&M.
- Perform and manage C&A tasks, including FIPS 199 categorization, security controls testing, vulnerability assessment and policy and procedures development.
- Worked with Department of Health and Human Services under Booz Allen on several projects in relation to Security Assessment and Authorization
- Reviews security controls and provide implementation responses as to if/how the systems are currently meeting the requirements.
- Assess existing security policies, processes, and templates against NIST guidance.
- Perform on-site security testing using vulnerability scanning tools such as Nessus.
- Perform RMF assessment on several different environments
- Contribute to initiating FISMA metrics such as Annual Testing, POA&M Management, and Program Management.
- Documented and reviewed System Security Plan (SSP), Security Assessment Report (SAR), Security Plan of Action and Milestones (POA&M) and Authorization letter Memorandum (ATO).
- Provide continuous monitoring support for control systems in accordance to FISMA guidelines and conduct FISMA-based security risk assessments.
IT Operational Specialist II
Confidential
- Responsible for 4 entire IT environment sites(180 Workstations and 10 Servers)
- Troubleshoot problems with company networks, hardware, software and peripheral equipment
- Performed computer installations and OS configurations using Altiris
- Administrated servers (Windows 2008 R2, Linux-webmin)
- Monitored and administrated performance of LAN/WAN network (switches, routers)
- Installed new Cisco routers, PODs, WAPS, for new sites
- Monitored and administrated performance of WiFi network
- Monitor and administrated performance of UPSs in MDF rooms
- Provide Tier I (Help Desk) and Tier II (Escalation) problem identification, diagnosis and resolution
- Provide support for the escalation and communication of status to management ad internal customers
- Upgrades systems and corrects errors to maintain system after implementation
- Knowledge in Microsoft Active Directory, Group Policies, VPN, Bomgar, WebEx, Hyper-V Manager, Server Manager, Group Policy Management
- Knowledge in configuring Xeroxes networking printers
- Deploy Virtual machines with Hyper-V and replicate DFS namespaces
- Knowledge in configuring and diagnosing Check Point Endpoint on systems and adding users to Endpoint Server Console
- Trained and orient customers on use of hardware and software applications
- Ordered parts from vendors to replace broken parts in computer systems
