SUMMARY:

• Seeking an Information System Auditor or Cyber Security Engineer in a growth oriented organization with focus on FISMA, Sarbanes - Oxley 404, System Security Monitoring, Audit and Evaluate Information, Risk Assessment, Testing Information Controls, verify and ensure Standardized security policies, procedures and guideline are in compliance. I have over 5+ years of experience in Information Security.
• Knowledgeable in COSO/COBIT, PCI DSS, HIPAA, SOX 404, SAS-70, Confidentiality, Integrity, Availability, Access Control, Audit and Accountability, ITIL, ISO 17779/270001/2/5, Assessment & Authorization, General Computer Controls, Application control, Testing, Compliance Testing, Risk Assessment, Cryptography, Penetration Testing, Change Management, Security Maintenance, Contingency Planning; Policies and Procedures, NIST, FIPS, FISMA, FISCAM, FEdRAMP.
• Experience and knowledgeable in all aspects of Software Development Life Cycle, Defect Life Cycle, System testing techniques and methodologies.
• Knowledgeable in Amazon Web Services (Identity Access Management (IAM),S3, EC2, Route 53, lambda), DynamoBD, Docker Apps and registry and Microsoft Azure Services and IBM Bluemix Cloud Technology, and Penetration testing skills
• Self-starter who is excited about learning new technology
• Analytical abilities with Financial Acumen and reconciliation methodology, and problem solving skills
• Highly knowledgeable with Active Directory Directory/Domain Services

PROFESSIONAL EXPERIENCE:

Confidential, Ashburn, VA

Cloud Engineer

Responsibilities:

• Cloud computing management provisioning ensuring security compliance are adhered (FISMA & FEdRAMP)
• Analyzing data and identify leading SaaS, PaaS or IaaS solutions for clients
• Rack, build, cable, configure, and provision Intel and Advanced Micro Devices (AMD) servers for easy scalability for clients
• Deployment of Cisco Layer 2 networking equipment and components in a virtual environment
• Troubleshoot, integrate, implement, test and manage quality assurance of server hardware and network functionality
• Professionally resolve hardware issue via trouble ticket using IBM (Tivoli) Management Platform
• Invent new approaches to automate maintenance tasks, system health, performance monitoring tools, and software management
• Monitor traffic and create tickets within the ticketing system to address problems, incidents and changes of hardware and redundancy
• Provide accurate and detailed logs within the ticketing and messaging systems for callouts and system alerts, as well as for communication and escalation steps taken to ensure prompt resolution of supported equipment, processes and teams
• Install, test and label cable and fiber using standard data center protocols and use cable management systems

Confidential, Atlanta, GA

Systems Engineer / Compliance Analyst

Responsibilities:

• Assessed program and security controls using Organization IT security policy handbook and NIST SP to provide information necessary to the overall effectiveness
• Developed and maintained C&A documentation including System security plan, contingency plans, risk assessment reports and evaluated existing documents and their accuracy
• Performed contingency plan test and training to ensure systems recoverability as defined in IT systems security requirements
• Understands information systems and security infrastructure
• Build great working relationships among colleagues and customers based on our customer Service level Agreement (SLA's)
• Manage High level security access, keys Authentication and authorization amongst Banks building and ATM Platforms
• Experience and knowledgeable in all aspects of software development life cycle, defect life cycle, system testing techniques and methodologies
• Troubleshooting errors and manual testing
• Work directly with the customer to analyze, derive and document solution requirements
• Oversee hardware maintenance, installation, network management, multi-vendor maintenance and software support

Confidential

SunTrust - IT Security Auditor

Responsibilities:

• Demonstrated experience with risk management, access rights and/or identity management
• Perform skip- tracing functions, log incidents downtime and accurately completing any paper work
• Knowledge of common information security management frameworks such as: International Standards Organization (ISO) 17799/27001, Information Technology Infrastructure Library (ITIL), Control Objectives for Information and Related Technology (CobiT) and National Institute of Standards and Technology (NIST) frameworks
• Experience troubleshooting information security related problems and incidents; knowledge of security architecture including encryption, firewalls, VPN’s, anti-virus systems and vulnerability scans on Avaya pay platform and Western Union pay solution platforms
• Experience in Oracle Identity Management (OIM), Oracle Role Manager (ORM) and other tools in the Oracle Identity Access Management Suite
• Excellent analytical thinking and collaborative skills
• Self-directed, self-starter, and motivated with the ability to work with minimal supervision
• A team player and easy going amongst colleagues

Confidential

Compliance Analyst

Responsibilities:

• Perform IT risk assessment and document the system security keys controls
• Meet with IT team to gather evidence, develop test plans, testing procedures and document test results and exceptions
• Design and Conduct walkthroughs, formulate test plans, test results and develop remediation plans for each area of the testing
• Wrote audit reports for distribution to management and senior management documenting the results of the audit
• Participate in the SOX testing of the General Computer Controls
• Develop a Business Continuity Plan and relationship with outsourced vendors
• Evaluate clients’ key IT processes such as change management, systems development
• Computer / data center operations and managing security at database, network and application layers

Confidential

Systems Admin

Responsibilities:

• Ensured proprietary/confidential data and integrated security systems solutions are protected
• Was involved in multiple Bank branch system setup overseeing to hardware maintenance, installation of servers, network management and privileges, and multi- vendor maintenance and software support
• Scan source code, auditing results with development and/or security teams and offering plans for remediation of vulnerabilities
• Perform quarterly, bi-annually and annual back-ups and test the validity of the back-up data
• Perform data restoration from backups whenever required
• Prompt response to issues affecting clients and handling them
• Demonstrate proficiency in systems administration (Linux, Citrix) windows server, network administration includes routers, switches, firewall and network protocols
• Analyzed compromised accounts and determine point of compromise, other commonalities among victims and their accounts, and the potential of employee misconduct/involvement
• Knowledgeable in project management skills with the ability to organize activities, manage task and report status effectively
• Takes responsibility and accountability of audit's coverage and reporting on common high risk areas such KYC, AML, Fraud, Technology, Sanctions and consent form and other enforcement action compliance