Security and Risk Management Experience: 14 Education: Associate Degree In Technology Location: Atlanta, GA Salary: $90K

• CISSP – Certified Information Systems Security Professional • MCSE Windows 2003 Server, MCSE W2K3 Security • CompTIA Security +, A+ • Department of Defense, State of Georgia and other various accounts Security Clearances.


Long Description

CERTIFICATIONS
•CISSP – Certified Information Systems Security Professional
•MCSE Windows 2003 Server, MCSE W2K3 Security
•CompTIA Security +, A+
•Department of Defense, State of Georgia and other various accounts Security
Clearances.
 
RELATED EXPERIENCE
Security and Risk ManagementMar 2012 – Mar 2017
Security Analyst – Audit Compliance and Assurance Team (ACAT)
•Performed Government mandated Regulatory Security reviews of HIPPA and FFIEC
accounts
•Daily scheduling, tracking and assignment of log processing for ACAT team
•Produce Monthly Metrics for ACAT accounts
•Maintain monthly inventories of accounts being monitored
•SME guidance relative to ACAT processes, practices and log processing to team members
 
Global Security, Asset & Risk Management (SARM)Aug 2010 – Nov 2011
Security Compliance Advisor (SCA)
•Advise and counsel account / transition/transformation management and delivery support personnel on business control issues
•Identify delivery processes /execution control exposures and provide recommendations for solutions and ensure delivery mgmt understood exposures.
•Assist with the documentation of control exposures, prepare customer risk communication, management of risk acceptance process
•Keep abreast of updated IBM standards and guidelines (Information Technology Corporate Standards - ITCS104/300, Global Service Delivery - GSD331/332 & Information Security Controls – ISeC (27002)
•Provide SME guidance relative to global processes and practices
•Provide SME guidance to account management, delivery and support personnel during audits and reviews
•Pro-actively support account management to attain audit readiness posture
•Provide management with on-going communication and status of accounts
 
•Provide account management with advice and expertise in support of all global security initiatives and compliance improvement projects
•Identify and communicate potential competency pervasive issues
•Provide steady state account support including security policy management, issue management, audit management and disaster recovery preparedness (i.e. SAS70, Business Controls Reviews, Key Controls for Operations, Security Compliance Reviews), validation activity management.
•SARM Compliance Focal for Macy’s, Godiva Chocolate, Hanesbrands, Sara Lee, Dal-tile, Sears Retail, Juniper Networks, Thompson Reuters, K&M Associates accounts.
•SARM Audit Compliance focal for Gap account PCI and SOX Audits
 
Integrated Technology Delivery, SSO – SARMMay 2008 – Nov 2009
Delivery Compliance Administrator / Security Compliance Advisor
•Keep abreast of updated IBM standards and guidelines (Information Technology Corporate Standards - ITCS104/300, Global Service Delivery - GSD331/332 & Information Security Controls – ISeC (27002)
•Provide SME guidance relative to global processes and practices
•Assisted account management to understand their security control exposures
•Pro-actively support account management to attain audit readiness posture
•SME for account management with all global security initiatives and compliance improvement projects
•Provide steady state account support including security policy management, issue management, audit management and disaster recovery preparedness (i.e. SAS70, Business Controls Reviews, Key Controls for Operations, Security Compliance Reviews), validation activity management.
•Delivery & Security Compliance Administration Focal for Windows / UNIX servers for ING Financial, AFC Enterprises, Allied Holdings and Amtrak accounts
•APAR/CIRATS (Security patching) compliance to maintain IBM SLA commitments within accounts
 
LAN Administration and Level II Desktop SupportMay 2007 – Apr 2008
Contract assignment for the virtualization of Fair Issac data center and reconstruct data center infrastructure / network for Mortgage Hub
•Design Configure and Administered Mortgage Hub/ISGN W2K/W2K3 Active Directory
•Assist in the design and testing of Mortgage Hub/ISGN Disaster Recovery plan
•Administered Production and R & D environment (Sun SAN and clustered Intel SQL
servers)
•Assist in the virtualization and relocation of Oracle 10 database servers for R&D
environment
•Project lead for the migration of users desktop environment to Mortgage Hub/ISGN
requirements
•Project lead for the Implementation and Administration of MS Windows Server Update
Services (WSUS) for Patch Management
•SME for the installation and repair Laptops, Printers, Scanners, Fax Machines, Video
Conference equipment
 
•Perform Asset Inventories (hardware/software) and reconcile to Mortgage Hub / Fair
Isaac contract
•Project lead to design a backup strategy for Mortgage Hub using Symantec NetBackup and Microsoft bit-streaming technologies
•Assist in the building and installation of SUN SAN, AS400 and VMWare environments for
Data Center
 
Integrated Technology Delivery, SSO – SARMAug 2004 – May 2007
Delivery Compliance Administrator / Security Compliance Advisor
•Keep abreast of updated IBM standards and guidelines (Information Technology Corporate Standards - ITCS104/300, Global Service Delivery - GSD331/332 & Information Security Controls – ISeC (27002)
•Provide SME guidance relative to global processes and practices
•Assisted account management to understand their security control exposures
•SME for account management with all global security initiatives and compliance improvement projects
•Provide steady state account support including security policy management, issue management, audit management and disaster recovery preparedness (i.e. SAS70, Business Controls Reviews, Key Controls for Operations, Security Compliance Reviews), validation activity management
•Delivery & Security Compliance Administration Focal for Windows / UNIX servers for ING Financial, DOW Chemical, Honeywell, Visteon, Williams Energy, and The State of California accounts
•SME for the Fusion/Virtual Server Administration, BigFix tools
•APAR/CIRATS (Security patching) compliance to maintain IBM SLA commitments within accounts.
 
Level III End User Computer (EUC) SupportJul 2002 – Jul 2004
•Provide Desktop/Laptop support for internal and external customers in a Win NT
4.0/2K/XP/2003 environment
•Project member for the Design and Implementation of Software Update
Services/Windows Server Update Services (SUS/WSUS) for Patch Management
•Project member for the Design and Implementation of SMS 2.0 for world-wide deployment of OS Upgrades, Security Patches and Application updates
•EUC Project member for migration to SMS 2003
•EUC Project member for Active Directory, MS Office and Exchange rollout
•EUC Project lead for Managed Desktop Firewall for remote users
•Authored Hyperion Corporate Policies pertaining to VPN Access and the use of high speed broadband internet connections (wired and wireless) for remote access.
•Configured (Notes) and continually updated Hyperion Asset Database (tracking all computer hardware, software, printers and those users/departments that asset was assigned)
•HP/IBM/Tektronix printer maintenance, upgrades and replacement
•Install, maintain and repair Scanners, Fax Machines, PDA’s, Web Cams, Smartcard programmers and Video conferencing equipment
 
•Administered Ghost Image Library for Hyperion sales and support systems
•EUC Project lead in creation of VMWare Image Library for Hyperion Application
Development
•Tape Back-up Administrator utilizing Veritas Backup Exec./ Netbackup
•Administration of Cisco VPN and RSA Secure ID Servers
•Administration of Symantec Antivirus Parent/Distribution servers
•Technical content developer for End User Computing Frequently Asked Questions
Database and Support Central Website
 
EDUCATION
DeVry Institute of Technology, Atlanta Campus06/1986 - 06/1988
Associates of Applied Science in Electronics Engineering Technology
•Summa cum Laude Graduate.