Compliance Administrator Resume Profile
Horsham, PA
Information Security Professional
Experienced and knowledgeable information security professional with ten plus years in IT seeking to contribute these skills to a company's Information Management program. In addition, my Master of Science in Information Assurance enhances these qualifications. Work well independently, or in a group setting in all facets of policy creation, information security program development/management, and information asset management.
Skill Set Summary
Certifications CISSP, CISA passed exam, applying for credential,Master of Science in Information Assurance
Concepts
Information Security fundamentals and advanced concepts, business continuity, security awareness, security administration, security policy, user provisioning, encryption, disaster recovery, business continuity Working knowledge of FISMA, SOX, RBAC role based access , GLBA, Cobit 4.1, NIST 800 series, and ISO Standards relating to Information Security ISO27000.
Technology
Microsoft Windows 2008, 2003, server administration, principles of TCP/IP, windows scripting, MSSQL 2005, anti-virus, encryption, PKI, nMap, Qualys and Retina vulnerability scanners
PROFESSIONAL EXPERIENCE
Confidential
Security/Compliance Administrator
In this role, I assist the Information Security Manager in policy and procedure development and remediation of audit findings for a FISMA regulated government information system. In addition, I conduct information security product research identifying needs requirement and comparing product offerings.
- Collaborated with Programming Manager in the formation of developer security testing, the outcome resulted in the closure of an audit finding
- Monitor intrusion detection system
- I reduced vulnerability report processing by 20 through automation
- Manage the closure of FISMA audit findings work across departments to develop and implement solution.
Confidential
Information Security Analyst
As Information Security Analyst, report to the Director of business systems, and is in charge of all Information Security Initiatives and the maintenance of the Information Security Program. In addition, works with Assistant Vice President of Financial Controls to monitor and maintain SOX based controls.
- Performed policy gap analysis, led to a list of policies required to attain compliance with COBIT.
- Worked with AVP of Financial Controls to develop remediation process for SOX audit findings
- Monitored and participated in DR plan development and off-site DR test.
- Reviewed Disaster Plan and provided recommendations to ensure that DR plan was complete. In addition, participated in DR test plan and post-mortem analysis of DR test, which led to a series of recommendations and improved practices for DR
Confidential
Information Security Analyst
Assisted Information Security Officer with maintenance and updates of corporate Information Security Policy, researched vulnerabilities and security issues and developed resolution mitigation strategy work with other departments in consulting role for security issues investigate incidents and provide feedback to Information Security Officer.
- Oversee Security Administrator training in use of automated tools in security management.
- Plan and execute initiative to meet requirements for internal and external audits i.e. FFIEC, SAS70, and Client.
- Updated and maintained the Information Security Policies.
- Accountable for the maintenance and renewal of all PKI certificates and keys.
- Authored Information Classification and Information Handling standards and procedures for corporate and client data.
Production Control Analyst
Was responsible for Code migration and recovery acted as a liaison between developers and operations staff first tier application support for operations staff for critical client facing application.
- Reduced file delivery time to development network by 15 which facilitated a quicker response by development group.
- Helped Information Security Officer design a review process to ensure the separation of duties between developer network and production network.
Computer Programmer/System Services
Responsible for application code maintenance, ran production cycles, and managed databases for web based product.
Professional Associations
Member of Information Systems Audit and Control Association ISACA 4 years
Privacy Policy
Resume Categories
- .NET Developers/Architects Resumes
- Java Developers/Architects Resumes
- Informatica Developers/Architects Resumes
- Business Analyst (BA) Resumes
- Quality Assurance (QA) Resumes
- Network and Systems Administrators Resumes
- Help Desk and Support specialists Resumes
- Oracle Developers Resumes
- SAP Resumes
- Web Developer Resumes
- Datawarehousing, ETL, Informatica Resumes
- Business Intelligence, Business Object Resumes
- MainFrame Resumes
- Network Admin Resumes
- Oracle Resumes
- ORACLE DBA Resumes
- Other Resumes
- Peoplesoft Resumes
- Project Manager Resumes
- Quality Assurance Resumes
- Recruiter Resumes
- SAS Resumes
- Sharepoint Resumes
- SQL Developers Resumes
- Technical Writers Resumes
- WebSphere Resumes
- Hot Resumes
