It Security Analyst Resume
3.00/5 (Submit Your Rating)
Newark, NJ
SUMMARY
- IT Security Analyst with five years experience supporting system Authority to Operate (ATO) processes, creating artifacts, assess control implementation statements and Plan of Actions & Milestones.
- Experience with applying FISMA and NIST Cybersecurity framework.
TECHNICAL SKILLS
Software: Proficient in Microsoft Office Suites Programs (Word, Excel, PowerPoint, Outlook, Access, SharePoint, Nessus Tenable, ServiceNow, Web Inspect.
PROFESSIONAL EXPERIENCE
Confidential, Newark, NJ
IT Security Analyst
Responsibilities:
- Update all Security artifacts needed for the Authorization process.
- Maintain and track the Security Authorization of all assigned systems.
- Work with auditors to identify Key Controls to be assessed on a recurring annual basis..
- Provide weekly status reports to System Owners and ISSM on all assigned systems.
- Generate and manage Plan of Actions & Milestones (POA&Ms) for each assigned IT System.
- Support the Incident Response team in the remediation, documentation and reporting of all incidents affecting assigned systems.
- Provide track and report security requirements throughout the project life cycle of all projects that are within the accreditation boundary.
- Prepare technical documentation including the Systems Security Plan (SSP), Plan of Actions and Milestones, Contingency Plan, Incident Response Plan, and Configuration Management Plans.
- Provide support for all Office of the Inspector General and other external audit activities.
- Conduct risk assessments of information systems to identify vulnerabilities.
- Perform oversight of compliance with vulnerability alerts.
- Achieve ATO status for all systems, including FedRAMP cloud - based IT systems.
Confidential, East Orange, NJ
Internal Control Specialist
Responsibilities:
- Performed internal controls testing for all Business Units.
- Reviewed, updated and reported on the status of internal controls to ensure compliance with policies and procedures.
- Documented and reported testing results with recommended best practice solutions for issue remediation and provided necessary input.
- Performed compliance and quality reviews on key accounting and finance processes to ensure quality supporting documentation for reconciliations and journal entries.
- Worked with process owners in the creation and maintenances of Risk and Control Matrices for processes identified through risk assessment.
Confidential, Lagos, Nigeria
IT Auditor
Responsibilities:
- Planned, coordinated, and conducted risk-based IT security audits.
- Supported the centralized IT Security Audit staff.
- Audited sensitive IT systems.
- Identified key controls that were not implemented or working as intended.
- Reviewed documents, records, reports and methods for accuracy and effectiveness.
- Conducted testing and interviews and prepared work papers, write-ups, and memos.