Risk Analyst Resume

SUMMARY

Strategic cybersecurity and privacy leader, security architect, risk assessor, information security officer and high - energy speaker/educator with unique mix of entrepreneurial, technical, and creative skills geared for fast-paced companies.

PROFESSIONAL EXPERIENCE

Confidential

Risk Analyst

Responsibilities:

Analyze and update System Security Plan (SSP), Risk Assessment (RA), Privacy Impact Assessment (PIA), System Security test and Evaluation (ST&E) and the Plan of Actions and Milestones (POA&M).
Assist System Owners and ISSO in preparing certification and Accreditation package for company’s IT systems, making sure that management, operational and technical security controls adhere to a formal and well-established security requirement authorized by NIST SP 800-53 R4.
Perform Vulnerability Assessment. Make sure that risks are assessed, evaluated and a proper action have been taken to limit their impact on the Information and Information Systems.
Created standard templates for required security assessment and authorization documents, including risk assessments, security plans, security assessment plans and reports, contingency plans, and security authorization packages.
Conducted I.T controls risk assessments that included reviewing organizational policies, standards and procedures and provided advice on their adequacy, accuracy and compliance with the Payment Card Industry Data Security Standard

Confidential

Information Security System Officer

Responsibilities:

Conducted kick off meetings to collect systems information (information type, boundary, inventory, etc.) and categorize systems based on NIST SP 800-60.
Conducted security control assessments to assess the adequacy of management, operational privacy, and technical security controls implemented. Security Assessment Reports (SAR) were developed detailing the results of the assessment along with Plan of Action and Milestones (POA&M).
Developed system security plans to provide an overview of federal information system security requirements and described the controls in place or to meet those requirements.
Created and updated the following Security Assessment and Authorization (SA&A) artifacts; FIPS 199, Security Test and Evaluations (ST&Es), Risk assessments (RAs), Threshold Analysis (PTA), Privacy Impact Analysis (PIA), E-Authentication, Contingency Plan, Plan of Action and Milestones (POAMs).
Prepared Security Assessment and Authorization (SA&A) packages to ascertain that management, operational and technical security controls adhere to NIST SP 800-53 standards.
Performed vulnerability assessment, making sure risks are assessed and proper, actions taken to mitigate them.
Conduct IT controls risk assessments including reviewing organizational policies, standards and procedures and providing advice on their adequacy, accuracy and compliance with industry standards.
Developed risk assessment reports. These reports identified threats and vulnerabilities. In addition, it also evaluates the likelihood that vulnerabilities can be exploited, assess the impact associated with these threats and vulnerabilities, and identified the overall risk level.

Confidential

Helpdesk Support Specialist

Responsibilities:

Handle technical troubleshooting with an enterprise environment including systems crashes, slow-downs and data recoveries
Engage and track priority issues with responsibility for the timely documentation, and escalation
Provide information and/or technical assistance to users concerning the development and maintenance of the computer network or for resolution of special problems
Earn recommendation for teamwork, flexibility and work excellence in providing IT support to students and faculty

We provide IT Staff Augmentation Services!

We'd love your feedback!

Resume Categories

Client Services

Job Seekers

Visa Sponsorship