Security Control Officer

Paulette Lambert

adysvu@r.postjobfree.com 202-***-**** Washington, DC 20002

TARGET JOB TITLE

A motivated and dedicated Information Systems Specialist with 5 years’ experience in compliance. FISMA, Risk Management Framework (RMF), Security Control Assessment (SCA), Continuous monitoring, SPLUNK, GRC tools

(CSAM, XACTA, & eMASS), Scanning tools (Nessus, STIGs), POA&M Management, A&A package, System Security Plans

(SSP), Incident Response Plans (IR), Contingency Plans (CP), Privacy Impact Analysis, and other applicable NIST standards. I possess strong oral and written communication skills and exceptional time management. I am goal- oriented, result-driven, and thrives in a fast-paced environment. CERTIFICATIONS & SKILLS PROFILE

Certifications: Security+ - In Progress

Operating systems: Windows (7&10), MAC OS

Compliance: NIST 800-53 and 800-171, 800-53a, 800-37 Tools: eMASS, Active Directory, Microsoft Office Suite 2010, Remedy, CSAM, Security management: SPLUNK, NESSUS, ACAS, STIG VIEWER PROFESSIONAL EXPERIENCE

SSA Technology Innovations LLC October 2020 - Present Information Systems Security Officer

● Provide security planning, assessment, risk analysis, and risk management

● Ensured network, system and data availability and integrity through preventative maintenance and upgrades

● Supports Senior Information Systems Security Officer (ISSO) in Authorization to Operate (ATO) processes using NIST SP 800-137

● Analyze documentation and provides associated artifacts during security control implementations

● Performs Privacy Impact Analysis (PIA) and writing Security Control Policy and Procedures Bemlah Group July 2018 – September 2020

Security Control Assessor

● Develop Security Assessment Plans (SAPs) and Conduct assessment of security control selections on various level systems to ensure compliant with NIST 800-53A

● Conduct security control interview meeting and Artifact gathering meeting with various stakeholders using assessment methods for exam, interview, and test.

● (CSAM) bullet points that communicate action taken, skills utilized, and result or impact.

● Document assessment findings in the Security Assessment Report (SAR) and recommend recommendations for controls that failed and vulnerabilities

Executive Abstracting Company LLC October 2016 – July 2018 Helpdesk Tier II

● Provided Tier I and II technical software, hardware, and network problem solution for clients by performing problem diagnosis and guiding users through step-by-step solutions

● Created, updated, resolved, and closed customer tickets in Remedy ticketing system for every call answered.

● Troubleshot applications on PCs and assisted users in the use of their PCs and networks.

● Managed Active Directory account creation assigning security privileges and maintaining appropriate Role- Based Access Control (RBAC) for privileged and non-privileged accounts for Windows systems. EDUCATION

Bachelor of Science in Kinesiology University of Maryland, College Park Master of Science in Accounting and Financial Management, University of Maryland, UC 2009-2012

Contact this candidate