It Auditor Resume Profile
4.00/5 (Submit Your Rating)
Areas of Strength
- Apply expertise in Federal government Accreditation Authorization formerly C A policies and practices utilizing FISMA and NIST SP 800-53 Rev 4.
- Manage POA M process to drive down weakness count and risk to agency.
- Lead numerous compliance projects in parallel with a 100 record of delivering on deadlines.
- Experience with implementing ISO 27001 information security requirements.
- Executed 508 testing activities, identified 508 compliance defects, policy, and best practices.
- Strong querying and data analysis skills to identify trends and anomalies.
Technical Expertise
- Plan of Action and Milestone POAM Management
- Cyber Security Asset Management CSAM , Microsoft Access, Excel, Word, PowerPoint, Visio, SQL
- Hands-on experience with compliance frameworks of NIST, COBIT and ISO
- Experience with FISMA and GAO FISCAM
- IT internal control and security practices
- NESUS Vulnerability Scanner and Security Center, Sourcefire, CounterACt, DBprotect.
- Software development lifecycle SDLC : requirements analysis, design, development, and testing
- Web Site Statistics Analysis and Management Tools
- 508/ADA compliance website, JAWS, and Adobe fillable forms
Professional Experience
Confidential
IT Auditor
- Interface with customers to provide compliance-related guidance in an ISSO capacity. Frequently interpreted NIST 800-53 control requirements to system owners.
- Established an agency wide process to timely collect FISMA data and reported to OMB achieving 100 acceptance.
- Reviewed and closed over 500 POA Ms in CSAM with 100 accuracy.
- Quality checked over 300 POAM's created in draft, submitted for closure and cancellation requested for completeness. Identified POAMs lacking defined descriptions, milestones, cost, and schedules.
- Conduct vulnerability scans and log analysis in support of vulnerability remediation and compliance.
- Coordinate with business units to receive and review artifacts supporting the closure of OIG's audit findings.
- Frequently presented complex technical information to non-technical audiences.
- Validated implementation of IT system security controls in accordance with NIST 800-53A publication.
- Maintained FISMA compliance and audit readiness.
- Collaborated with OIG auditors, system assessors, security operations center personnel, network engineers and management to identify practical security solutions.
- Analyzed Nessus scan results and resolved failed scans.
Confidential
Web Developer
- Managed 3 security resources and provided guidance.
- Scanned and mitigated vulnerabilities.
- Integrated information security requirements into the organization's system development life cycle processes.
- Conducted remediation actions based on the results of ongoing monitoring activities, assessment of risk, and outstanding items in the plan of action and milestones.
- Maintained awareness of current website trends, best practices and developments.
- Managed a web publication team of 16 people including HTML coders, programmers, and quality assurance specialists.
- Migrated and maintained content to DRUPAL site.
- Coordinated team to design a new SBA public website combining the features of pre-existing sites, incorporating a unique entitlements system and utilizing an XML data exchange methodology for data sourcing and integration.
- Ensured daily publication of content updates to the public SBA web site.
- Built and maintained websites using ORACE Universal Content Management 10gR3 STELLENT software.
- Trained Oracle UCM users in ReadyTalk Conference applications.
- Created Flash files for daily messages and events.
- Evaluated, developed interactive PDF forms with Adobe LiveCycle Designer ES.
- Converted and migrated HTML SBA intranet documents SharePoint 2007 portal pages.
- Automation Technology, Inc. Web Developer - June 2006 - July 2007
- Coordinated team to create and upgrade content management and display applications for the public website and other web properties using Oracle/Stellent Technologies.
- Assisted with migrating over 60,000 items to a Content Management System using Oracle Web Center.
- Utilized Dynamic convertors and the Archive/backup utility to migrate content information.
- Created Workbench workflows within PDF forms between SBA district and local offices.
- Performed functional and 508 compliance testing.
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
