Information Assurance Analyst Resume
5.00/5 (Submit Your Rating)
Largo, MD
PROFESSIONAL QUALIFICATION SUMMARY:
An expert in Information Security Analyst with expertise of over 7 years in risk management framework (RMF), systems development life cycle (SDLC), risk management, and vulnerabilities management of Confidential wide range of vulnerabilities and threats. Well - versed in direct and remote analysis with strong critical thinking, technical writing, Project Management & Support and Impact Analysis
AREAS OF EXPERTISE:
- Leading Security Assessments
- Leading High Visibility Customer Facing Meetings
- Conducting Security Control Assessments
- Conducting Security Control Testing
- Conducting Risk Analysis
- Conducting Risk Assessments
- Risk Assessment Report (RAR)
- SA& Confidential or Security Assessment and Authorization (or C& Confidential )
- Contingency Plan Development or Evaluation
- Knowledge of the System Development Life Excellent & Risk Management Framework (RMF) with great Written, Verbal, Oral Communication & Interpersonal skills Systems Development Life Cycle (SDLC) Analytical, Problem-Solving
- Assessment and Authorization ( Confidential & Confidential )
- System Security Plan SSP, Review, Evaluation, Creation. Security Assessment Plan (SAP), Security Assessment Report (SAR), using MS Office (Word, Excel, Power-Point, Outlook, Adobe) Security Test & Evaluation (ST&E) Nessus.
- Plan of Action and Milestones (POA&M) & ATO Packages
- Dependable Organizational leadership skills, Quick Learner and Confidential Team Player
TECHNICAL SKILLS & TOOLS:
POA&M, Tenable Nessus, Snort, Burp Suite, Fortify SAR, SCA, SYSTEM SECURITY, SECURITY PLAN, Confidential SP
EXPERIENCE:
Information Assurance Analyst
Confidential, Largo, MD
Responsibilities:
- Developed, reviewed, and updated information security system policies, system security plans, and security baselines in accordance with Confidential, Confidential, Confidential -130 and industry best security practices.
- Applied appropriate information security control for federal information system based on Confidential rev1, SP, FIPS 199, FIPS 200 and Confidential -130 appendix iii.
- Provided security expertise and guidance in support of security assessments. Review, analyze and evaluate business system and user needs, specifically in authorization and accreditation ( Confidential & Confidential ).
- Facilitated security control assessment (SCA) and continuous monitoring activities. Executed examine, interview, and test procedures in accordance with Confidential revision 4.
- Ensured cyber security policies are adhered to and that required controls are implemented. Validated information system security plans to ensure Confidential control requirements are met.
- Developed resultant SCA documentation, including but not limited to the security assessment report (SAR). Reviewed security logs to ensure compliance with policies and procedures and identifies potential anomalies.
- Updated and reviewed Confidential & Confidential packages to include core docs, policy & procedures, operations and maintenance artifacts, SSP, SAR, FIPS 199 & FIPS 200, POA&M, and more. Collected operation and maintenance artifacts on an ongoing basis so that security control assessment (SCA) is seamless.
Information Security Engineer
Confidential, Rockville, MD
Responsibilities:
- Developed System Security Plan SSP to provide an overview of system requirements.
- Ensured that, Security Authorization Package such as SSP, POA&M and SAR Security Assessment.
- Report are maintained, reviewed and updated in accordance with the guide line.
- Responsible for monitoring compliance with information security policies by coaching others within the organization on acceptable uses of information technology and how to protect organization systems.
- Assist Senior Information Security Officer in the conduct of Information Security Assurance roles and ensuring system safety.
- Conducted time to time risk assessment and reviewed controls for any deficiencies, and the deficiencies where reported to the ISSO for complete mitigation actions.
- Involved in Drafting Contingency Plan recommendations for system owners.
- Checked events logs for irregularities, identified regularities are then reported as incidents.
- Perform cyber security risk and regulatory compliance assessments.
Information Security Analyst
Confidential
Responsibilities:
- Provided expertise on technical services including all aspects of information security
- Conduct IT risk assessments to identify system threats
- Conducted security control assessments to assess the adequacy of management, operation privacy, and technical security controls implemented
- Performed maintenance and advanced configuration of systems in order to protect systems from emerging cyber threats.
- Conducted forensic traffic logs analysis to isolate issues and respond to analyst alerts
- Business Impact Analysis (BIA) to analyze mission-critical business functions, and identify and quantify the impact if these are lost (e.g., operational, financial). BIA helped to define the company's business continuity plan and IT internal control audit objective.
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
