Resume

• Information Security Analyst at Perfect Touch LLC (May 2022 - Present)
  • Monitored security systems and responded to security incidents.
  • Assisted in developing and implementing security policies.
  • Developed and implemented security for the company’s public-facing website.
  • Troubleshot endpoint devices.
  • Managed day-to-day security issues.
• Information Security Analyst at Fluent Digital Partners (May 2022 - February 2023)
  • Assisted in developing and implementing security policies and procedures that align with organization objectives and regulatory requirements using industry standards and frameworks like NIST 800-53 and NIST 800-30 FISMA and GDPR.
  • Monitored security systems and networks including firewalls, intrusion detection systems, and responded to security incidents.
  • Assisted in the continuous monitoring phase using NIST 800-37 as a guide and Nessus vulnerability scans to detect potential risk on single or multiple assets across the enterprise network.
  • Performed threat hunting using behavioral machine learning and integrated SIEM systems to model potential threats and how to remediate them.
  • Used tools like Splunk to collate data and analyze potential anomalies.
  • Provided security awareness training for clients.
  • Assisted in developing the Security Assessment Report based on the assessment results.
  • Assisted in developing Business Continuity Plan (BCP) for clients.
  • Conducted Security Control Assessment according to NIST SP 800-53A to assess the adequacy of management, operational, and technical security controls implemented.
• Security Assurance Analyst at Stryker Orthopedics (January 2018 - January 2022)
  • Assisted in developing and implementing security policies related to the organization’s requirements.
  • Reviewed system-level Standard Operating Procedures (SOPs) and other A & A documentation including: Business Impact Analysis (BIAs), Privacy Impact Analysis (PIAs), System Security Plans (SSPs), and Information System Contingency Plan (ISCPs).
  • Helped the company comply with ISO 13485 regulations in producing medical devices.
  • Monitored security controls after authorization is granted to ensure continuous compliance with security requirements.
• Information Security Analyst Intern at Technologist Computers (January 2024 - April 2024)
  • Engaged in asset management vulnerability assessment and risk analysis.
  • Assisted in designing security infrastructure and policy creation.
  • Troubleshot endpoint devices.
  • Conducted product research and review to meet clients' needs.
  • Wrote business proposals and made recommendations to clients.
  • Facilitated a robust employee awareness campaign which reduced risk by 62%.