Cyber Security Analyst Resume
5.00/5 (Submit Your Rating)
Washington, DC
SUMMARY:
- Daily working knowledge of the entire Risk Management Framework (RMF) process using NIST 800 - series SPs: 18, 37r1, 137, 128, 30r1, 34, 63, 64r2, 53r4, 53Ar4, 60 Vol 1&2, FIPS 199, FIPS 200 publications and standards with Federal and private agencies for FISMA compliance.
- Understanding and experience with the System Development Life Cycle (SDLC)
- Possess in-depth ability of creating, reviewing and updating security artifacts and documentation such as SSP, SAP, SAR, POA&M, PIA and PTA.
- Very acquainted with vulnerability scanning and penetration testing tools (Nessus) as well as POA&M automated tracking tools (CSAM).
- Team Player, quick learner, pays attention to detail and can work under difficult conditions to meet deadlines.
- Excellent communication, customer service, analytic, problem solving, time management and interpersonal skills.
PROFESSIONAL EXPERIENCE:
Cyber Security Analyst
Confidential, Washington, DC
- Performs security controls assessments using NIST SP 800-53A as a guide by means of the assessment methods such as Interview, Examination and Testing.
- Determines Technical, Operational and Management security controls effectiveness by assessing whether controls are implemented correctly, operating as intended, and meeting security requirements.
- Schedule assessment kick-off meetings with assessors and Security Control Interview meetings with the ISSO, System Owners and Common Control Providers.
- Creates Requirement Traceability Matrix (RTM) and documents whether controls being assessed passed or fail using NIST SP 800-53A as a guide.
- Creates and finalizes Security Assessment Report (SAR) and give recommendations to ISSO on how to mitigate or remediate reported weaknesses and vulnerabilities.
- Reviews A&A package items using NIST guidance for FISMA compliance such as the System FIPS 199 Categorization, e-Authentication Assessment, PTA, PIA, Contingency Plan (CP) and Contingency Plan Test (CPT)
Information Technology Specialist
Confidential, Washington, DC
- Served on a team of information security professionals in the development of security policies, procedures, and security assessment and authorization (A&A) packages using NIST 800 series SP for FISMA compliance.
- Evaluated threats and vulnerabilities based on Tenable reports and also Implement Risk Management Framework (RMF) in accordance with NIST SP 800-37R1.
- Created/generated, reviewed and updated A&A Packages: System Registration, System Security Categorization, eAuthentication Assessment CP, CPT, SSP, SAP, SAR, and POA&M using CSAM.
- Ensures all POA&M actions are completed and tested in timely fashion to meet client’s deadlines.
- Reviewed Privacy Impact Assessment (PIA) document after a positive PTA is created and ensure PII findings are recorded in the System of Record Notice (SORN)
- Continuously monitored security controls effectiveness using NIST SP 800-137r1 as a guide.
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
