Information System Security Officer

SAMUEL A. MORRISON

HERNDON, VA

Cell 571-***-**** adug8b@r.postjobfree.com

PROFFESSIONAL SUMMARY

Cybersecurity professional risk assessment Analyst seeking a position with a stable company with room for growth and opportunity for advancement. Highly motivated with years of experience in NIST Risk manage- ment / IT control framework, SOC 1/SOC 2 and IT control frameworks with with aim of delivering solutions to meet organizational needs. Well, known for meeting/exceeding expectations, effective and efficient team member with great communication skills on team and all levels, problem solving abilities. Keen to dedicating my all to organizational demands by delivering the best and exceptional results whilst ensuring trusting rela- tionships with internal and external stakeholders

TECHNICAL SKILLS

• NIST Standards/ FISMA

• Risk Management Framework (RMF)

• Security Assessment

• Categorization

• Continuous Monitoring

• Plan of Actions and Milestone (POAM)

• Authorization to Operate (ATO)

• System Security Plan (SSP)

• Configuration Management

• Disaster Recovery/Incident Response

• HIPAA Compliance

• Nessus Vulnerability Scan, SIEM, Splunk, VMware. WORK EXPERIENCE

PACIFIC CYBER SOLUTIONS, STAFFORD, VA

Information System Security Officer, Aug. 2017 - Present

• Develop, review and update information security system documentations, including System Security Plan (SSP), Plan of Action & Milestone (POA&M), Risk Assessment (RA), policies and procedures, security control baselines in accordance with NIST guideline and security practices.

• Apply appropriate information security control for Federal Information System based on NIST 800-37, SP 800-53, FIPS 199, FIPS 200, and NIST SP 800-53A.

• Assess security controls and develop security assessment report (SAR).

• Support A&A activities (Categorization, Selection, Implementation, Assessment, Authorization, and Continuous Monitoring) according to the A&A project plan.

• Facilitate Security Control Assessment (SCA) and monitor activities.

• Execute, examine, interview, and test procedures in accordance with NIST SP 800-53A.

• Ensure cyber security policies are adhered to and that required controls are implemented.

• Validate information system security plans to ensure NIST control requirements are met.

• Assist team members with proper artifact collection and details to client that will satisfy assessment requirements.

• Manage vulnerabilities with the aid of Nessus vulnerability Scanners to detect potential risks on a sin- gle or multiple assets across the enterprise network. ADVOCATE INC

Desktop Support Specialist, Feb. 2015 – Aug. 2017

• Provided support for application software installation and use.

• Acted as an advocate for the office in the resolution of all computer-related problems or issues.

• Assisted in the delivery, installation, and use of systems and services, (e.g., headquarters to district of- fice connectivity, internet, remote access, etc.).

• Provided front line phone, Live Chat, and Remote Desktop support, resolved other requests via on-site visit(s). Provided Hardware/Software Installation and Setup support.

• Troubleshooted and solved common network issues using physical and logical diagnostic tools.

• Troubleshooted and solved common Microsoft based platforms (Windows XP, Windows 7, Microsoft Office Suite, Etc.) and common hardware used throughout FBCH (Dell, Lenovo, and HP).

• Escalated serious technical issues to engineering staff by relaying information from customers to help diagnose problems.

• Provided second-tier support to end users.

EDUCATION

• ANNA MARIA COLLEGE

BA. Theology

CERTIFICATIONS

• ISACA - Certified Information Security Manager (CISM)

• CompTIA - Security+ CE

Contact this candidate