SUMMARY

• RSA Archer Consultant, wif over 5 years of archer noledge combined multiple RSA installs upgrades and enhancements. Technical ability and complex problem solving skills. Industries include banking, consulting,, oil, outsourcing, and Healthcare.
• Specialization in governance, risk and compliance (GRC), and mitigation of risk. RSA experience includes version 4.X and 5.X workflow DDE’s, Data Feeds, PCI, calculations, workflow approvals, custom dashboard, iView’s and administration. Developer and testing lead wif experience wif applications PCI - DSS, HIPAA, ISO 27000, FFIEC. Archer modules include:Questionnaires Policy Management, Enterprise Management, Risk Management, Compliance Management, Vendor Management, Audit Management, Incident Management, and Threat Management.
• me has working understanding of Common control framework(adobe). me has managed Compliance controls using adobe CCF. Also, me has done reporting in SOX and worked wif internal and external auditors.

PROFESSIONAL EXPERIENCE

Confidential, NY

RSA Archer Developer

Responsibilities:

• Oversee day-to-day operations of multiple GRC teams as well as teh implementation duties.
• Ability to think strategically; work wif a sense of urgency and pay attention to detail.
• Know of risk convergence and IT risk control frame work.
• BS7799 / ISO 27001 IT Security Implementation and Audit
• Audited teh systems for complying wif SOX-404 IT Compliance, PCI DSS Compliance, SAS 70 Certifications and ISO 27001 Certifications.
• Performing SOD checks for all PRD users using SAP-GRC Access Risk Analysis toolset
• Performed Post installation activities on GRC Access Control suite using SPRO and NWBC transaction codes.
• Involved in developing GRC 10.1 rule sets for FI, CO, MM, and SD modules
• Established Security Committee offering ISO 27001-certification guidance, while working wif external auditors and directing IT security audit procedural policies.
• Experience wif working on global teams across time zones, cultures and languages.
• Well emerged in a fast paced, high stress environments.
• Program/Project management duties for several accounts.
• Responsible for teh creation and maintenance of multi account portfolio (quota).
• Help companies wif Taxonomy process IT Risk and remediation efforts.
• Ability to present complex solutions and methods to a general community.
• Evaluate GRC current state and suggest future state based on best practices.
• Responsible for several full life cycle implementation of Archer modules and ODA’s which include but not limited too discovery taxonomy requirements gathering design customizing architecture project management and program management.
• Responsible for motivating mentoring as well as training senior GRC consultants and managers.
• Archer consultant specialization in managing and executing GRC IT Risk governance design Framework programs.
• Knowledgeable consultant providing support development and design requirement for customers.
• Archer consultant wif application noledge of Archer SmartSuite Framework suite.
• Developer wif multiple full lifecycle development projects which include discovery, testing, and production deployment.
• Maintain project schedule and relationships of stakeholders and other key project members.
• Provide programming and configuration development support as well as data migration specialist using Data feed Manager and access to external application or data resources.
• Consulting developer focused on hosted environment and automation of business processes.
• Knowledgeable of treat incident modules in Archer as well as vulnerability tools such as Vulnerability.
• Interfaced wif customer design teams to architect infrastructure and applications specs.
• Responsibilities include problem solving, coding and workflow design, and documentation.
• Acted as Developer, Project manager and trainer on projects.
• Knowledge of IT controls, policies, methodologies and best practices.
• Advanced competency of processes in system analysis.
• Enterprise Architecture and implementation noledge.

Confidential, Woodcliff Lake, NJ

RSA Archer Consultant

Responsibilities:

• Responsible for several full life cycle implementation of Archer modules and ODA’s which include but not limited too discovery taxonomy requirements gathering design customizing architecture
• Archer consultant specialization in managing and executing GRC IT Risk governance design Framework programs.
• Program and project manage archer projects.
• Knowledgeable consultant providing support development and design requirement for customers.
• Created roles for GRC Firefighter users for Emergency Access Management
• Set up Users, Controllers, and Owners of GRC Firefighter IDs
• Partner wif GRC Vendor on complex matters, leveraging SME's where needed;
• Serve as liaison, interfacing wif lines of business and staff functions such as Compliance, Legal, and other areas of Risk
• Archer consultant wif application noledge of Archer SmartSuite Framework suite.
• Developer wif multiple full lifecycle development projects which include discovery, testing, and production deployment.
• Maintain project schedule and relationships of stakeholders and other key project members.
• ISO 27001 and SAS 70 Readiness Audits
• Identified teh gaps or deficiencies relating to ISO 27001 and SAS/70 controls, developed and implemented ISMS (Information Security Management Systems) and prepared teh company for ISO 27001 and SAS 70 certifications. Worked as an advisor for giving practical recommendations to comply wif ISO 27001 and SAS70 compliance requirements.
• Provide programming and configuration development support as well as data migration specialist using Data feed Manager and access to external application or data resources.
• Consulting developer focused on hosted environment and automation of business processes.
• Knowledgeable of treat incident modules in Archer as well as vulnerability tools such as Vulnerability.
• Teh ability to estimate plan and execute complex technical projects.
• Assess business rule performs logical and physical data modeling implement physical database object and manage data.
• Interfaced wif customer design teams to architect infrastructure and applications specs.
• Responsibilities include problem solving, coding and workflow design, and documentation.
• Acted as Developer, Project manager and trainer on projects.
• Teh ability to lead or work as a team member.
• Knowledge of IT controls, policies, methodologies and best practices.
• Advanced competency of processes in system analysis.
• Excellent verbal and written communication skills who provided documented test plans.
• Ability to implement customer solutions in a variety of environments.
• Enterprise Architecture and implementation noledge.
• Provide technology best practice guidance to customers.
• Relocation specialist which includes phase migration, flash cut and forklift moves.
• Knowledge of data migration and data architecture.
• Provide data Solution integration across business segments.
• Report all risk and prepare mitigations for all risk.
• Responsible for technical design improvement and problem solving.

Confidential, Cleveland, OH

RSA Archer Consultant

Responsibilities:

• Archer consultant specialization in managing and executing GRC IT Risk governance design Framework programs.
• Responsible for data gather discovery and Taxonomy.
• Program and project manage archer projects.
• Knowledgeable consultant providing support development and design requirement for customers.
• Serve as liaison, interfacing wif lines of business and staff functions such as Compliance, Legal, and other areas of Risk
• Archer consultant wif application noledge of Archer SmartSuite Framework suite.
• Create PCI DSS related control procedures and PCI system and application inventory SAQ categories.
• ISO 27001 IT Security Implementation and Audit: Recommended and assisted in implementing teh Information Security Management System (ISMS) framework and developed enterprise-wide security policy. Assisted and coordinated wif external auditors for obtaining ISO 17799/27001 certifications for teh company.
• ISO 27001 Information Security Management System Lead Auditor (awaiting certification)
• Participated on teh Enterprise GRC Implementation Team.
• ROC (report on compliance) and AOC (Attestation of Compliance) allocate PCI controls and findings.
• Assisted multinational client in GRC vendor selection (requirements gathering, vendor identification, RFP preparation, RFP reply qualitative/quantitative analysis, vendor selection).
• Developer wif multiple full lifecycle development projects which include discovery, testing, and production deployment.
• Maintain project schedule and relationships of stakeholders and other key project members.
• Provide programming and configuration development support as well as data migration specialist using Data feed Manager and access to external application or data resources.
• Consulting developer focused on hosted environment and automation of business processes.
• Knowledgeable of treat incident modules in Archer as well as vulnerability tools such as Vulnerability.
• Teh ability to estimate plan and execute complex technical projects.
• Assess business rule performs logical and physical data modeling implement physical database object and manage data.
• Interfaced wif customer design teams to architect infrastructure and applications specs.
• Responsibilities include problem solving, coding and workflow design, and documentation.
• Acted as Developer, Project manager and trainer on projects.
• Teh ability to lead or work as a team member.
• Knowledge of IT controls, policies, methodologies and best practices.
• Advanced competency of processes in system analysis.
• Excellent verbal and written communication skills who provided documented test plans.
• Ability to implement customer solutions in a variety of environments.
• Enterprise Architecture and implementation noledge.
• Provide technology best practice guidance to customers.
• Relocation specialist which includes phase migration, flash cut and forklift moves.
• Knowledge of data migration and data architecture.
• Provide data Solution integration across business segments.
• Report all risk and prepare mitigations for all risk.
• Responsible for technical design improvement and problem solving.
• Create and execute move strategic plans.
• Knowledge of data migration and data architecture.
• Provide data Solution integration across business segments.
• Performed quality and customer management responsibilities for IT infrastructure.

Confidential

Jr. RSA Archer Developer

Responsibilities:

• Archer developer specialization in GRC framework design and development.
• Knowledgeable consultant providing design requirement activities for customers.
• Archer consultant wif application noledge of Archer SmartSuite Framework suite.
• Developer wif multiple full lifecycle development projects which include discovery, testing, and production deployment.
• Provide programming and configuration development support as well as data migration specialist using Datafeed Manager and access to external application or data resources.
• Consulting developer focused on hosted environment and automation of business processes.
• Work experience includes data feeds form different source locations. me has an great understanding of API’s wifin tool as well.
• Knowledgeable of treat incident modules in Archer as well as vulnerability tools such as Vulnerability.
• Design and develop web-based applications using .NET to meet teh requirements of functional and systems design specifications.
• Development of databases using SQL development skills.
• Teh ability to estimate plan and execute complex technical projects.
• Assess business rule performs logical and physical data modeling implement physical database object and manage data.
• Develop and update system via .NET web services development and architecture.
• Web services experience in parsing files.
• Web base design developer that test evaluate and fix code based on teh test results.
• Interfaced wif customer design teams to architect infrastructure and applications spec’s.
• Responsibilities include problem solving, coding and workflow design, and documentation.
• Acted as Developer, Project manager and trainer on projects.
• Teh ability to lead or work as a team member.
• Knowledge of IT controls, policies, methodologies and best practices.
• Advanced competency of processes in system analysis.
• Excellent verbal and written communication skills who provided documented test plans.