Post Job Free
Sign in

Cyber Security Risk Management

Location:
East Windsor, NJ
Posted:
May 16, 2024

Contact this candidate

Resume:

Leha Dutta

Ames, IA linkedin.com/in/lehadutta 515-***-**** ad5ras@r.postjobfree.com

EDUCATION

Iowa State University, B.S. in Cyber Security Engineering Ames, IA May 2024

Relevant Coursework: Cyber Security Fundamentals, Cyber Security Concepts and Tools, Cryptography, Network Protocols and Security, Information Warfare, Distributed Systems and Middleware, Digital Forensics, Data Structure and Algorithms, Software Application Development, Operating Systems, IT Audit Engagements, ISO and Sarbanes-Oxley evidence collection, Penetration Testing, Network Security

WORK EXPERIENCE

IT Security & Risk Management Intern, Venerable Des Moines, IA May 2022 - Dec 2022

Enhanced system security and streamlined access management processes by utilizing CyberArk, Microsoft Azure, and SailPoint within the Identity and Access Management (IAM) team.

Improved policy, control, and issue updates in ServiceNow, provided vendor reassessment support, and facilitated Zero Day Vendor communication within the Operational Risk Management (ORM) function.

Strengthened Security Operations by updating data in security tools, enhancing documentation for business impact analysis, conducting annual reviews, and supporting disaster recovery exercises and crisis management communication.

Developed a comprehensive understanding of Operational Risk Management, including controls, risk concepts, and risk rating levels, using the corporate risk heat map.

Optimized ServiceNow functionality by utilizing the GRC module and Virtual Task Boards for better process management.

Assessed the design and operating effectiveness of General IT Controls across multiple systems, improving processes through interviews, documentation reviews, system inspections, process observations, and analytical tools.

Ensured the completeness and accuracy of key reports in internal control processes by validating report logic, source data, and input parameters.

Evaluated and improved the design, implementation, and operating effectiveness of internal controls, enhancing company security measures.

Identified and mitigated cyber risks through audits, providing actionable recommendations for improving the cybersecurity posture and reducing vulnerabilities.

Achieved a deep understanding of company business processes and supporting technologies through comprehensive end-to-end process walkthroughs, leading to better process optimization and risk management.

LEADERSHIP EXPERIENCE

International First Year Seminar Leader – Iowa State University Aug 2023- May 2024

Facilitated a smooth transition for international students by providing mentorship and addressing their academic, social, and personal needs, contributing to their successful adaptation.

President – WE ARE SAATH Iowa State University June 2022 – May 2024

Fostered an inclusive community by organizing activities, maintaining communication with advisors, and coordinating with national entities, resulting in increased student engagement and participation.

Treasurer – Google Developer Students Club, Iowa State University Aug 2023 –May 2024

Managed club finances effectively, ensuring accurate record-keeping and budget oversight, leading to successful funding and resource allocation for club activities.

Editorial Council Board Member – Iowa State Daily Aug 2022 – May 2024

Contributed valuable ideas for article content and represented the College of Engineering, enhancing the diversity and quality of the publication.

PROJECTS

Utilizing PAWR program to develop Hands-on Labs for Cybersecurity courses Aug 2023 – May 2024

Developed advanced hands-on laboratory modules with a team, leveraging PAWR program resources to enhance students’ practical skills and real-world experiences in wireless research environments.

Service Hub Java, MySQL, Maven, Spring Boot, Android Studio Aug 2023 – Dec 2023

Built an Android app with a team, providing multiple essential services for seamless user convenience, and implemented REST APIs for efficient data communication and storage.

SKILLS

Cybersecurity Tools: Wireshark, Nmap, Burp Suite, Metasploit, Splunk, Nikto, CrowdStrike, Qualys, Nessus

Cybersecurity Frameworks: NIST Cybersecurity Framework, ISO/IEC 27001, CIS Controls, PCI DSS, HIPAA, GDPR

Languages: Python, Bash, PowerShell

Databases: SQL, MongoDB

Cloud: Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP)

Frameworks & Libraries: Pandas, NumPy, Matplotlib, Springboot, Hibernate

Tools & Others: Git, Linux, Gradle, Maven, CI/CD



Contact this candidate