Management Manager
Resume:
HERMINIA (MINNIE) LOCKE, CISA
Maitland, FL 32751
******@***.**.***
http://www.linkedin.com/in/herminialocke
SUMMARY
Enthusiastic bilingual IT Professional with expertise in Information
Systems security and privacy for current technologies. Certified
Information Systems Auditor (CISA ) skilled in audit readiness and audit
support, as well as in regulatory controls compliance including SOX, GLBA,
FFIEC, Interac, PCI DSS, HIPAA and SAS 70. Extensive experience in system
security and IT support on both distributed and mainframe environments.
Aptitude for creative problem solving and conflict resolution. Verbal and
written fluency in English and Spanish.
TECHNICAL / SPECIALIZED SKILLS
Technical Skills:
. Experienced in Audit Management process including audit readiness and
audit support, security and regulatory controls compliance and
remediation of control defects based on ITIL, CoBIT, and ISO / IEC
27002:2005 standards and best practices
. Working knowledge of Best Practices for Security and Privacy, with
emphasis on ISACA / OECD Privacy Principles for PII
. Proficient in development of technical and business documentation
using most Microsoft and Lotus SmartSuite desktop tools
. Experienced in IT Project Management, using System Development Life
Cycle (SDLC) tools and methodologies and Total Quality Management
(TQM) / ISO 9001 processes and standards
. Knowledgeable in all aspects of midrange and mainframe system
operations and support
. Skilled in database design and maintenance, with a working knowledge
of SQL
Business Skills:
. Exceptional written and oral communication skills
. Excellent leadership skills, emphasizing collaborative but decisive
style
. Proficient in negotiation, conflict resolution and problem solving
. Fast learner; motivated and enthusiastic about new challenges
. Bilingual - verbal & written fluency in English and Spanish
PROFESSIONAL EXPERIENCE
IBM GLOBAL SERVICES, Orlando, FL 1999 - 2010
IS Security Compliance Advisor (2006 - 2010)
Performed Security Compliance Management and Audit Support functions related to
IS Security and Business Controls.
Provided Audit Support for internal and external assessments, as well as
regulatory reviews such as Sarbanes-Oxley, FFIEC, Interac, PCI DSS,
Gramm-Leach-Bliley, HIPAA and SAS 70, achieving 95% satisfactory rating with
prompt mitigation/remediation of control defects.
Issue Management - identified and tracked non-compliance issues, ensuring 98%
of issues were remediated within required timeframes.
Security Policy Management - collaborated with clients, management and support
teams to document Roles, Responsibilities, Policy Level Security Settings,
Technical Specifications and Policy Exceptions which clearly defined
deliverables.
Risk Management - identified, documented and managed business risks, including
facilitation of client communication and risk acceptance, to resolve or
mitigate all service-impacting risks.
Performed proactive Compliance Review activities such as control point and
management self-assessment validation, compliance cadence reviews and process
milestone tracking which identified and resolved potential problems.
HERMINIA (MINNIE) LOCKE, CISA Page Two
Process Manager - Midrange Auto-Ticketing & System Activation /
Deactivation (2001 - 2006)
Performed Process Management functions related to Midrange Auto-Ticketing
(MRAT) and System Activation and Deactivation (SAD).
Led cross-functional team comprised of 10-12 technical professionals in
implementing MRAT on over 500 servers, and maintained Service Level Agreements
(SLAs) and MRAT team goals and objectives for minimizing alarms and manual
activities for 95% of systems.
Identified, resolved or escalated issues that potentially jeopardized new
projects or existing processes.
Developed and implemented checklists, documents, job aids and desk procedures
which standardized processes and increased efficiencies.
Outage Situation Leader (1999 - 2001)
Performed Outage Management functions, ensuring that problem management
activities were coordinated and communicated effectively during major service
impacting conditions.
Provided 24x7 Real-time management of outage resolution tasks and coordination
of outage recovery activities between various technical support groups,
ensuring Recovery Point / Time Objectives were met.
Communicated with upper-level Managers and Executives on outages with high
impact which increased awareness and attention.
Facilitated Post Outage Review (POR) meetings and activities for Root Cause
Analysis and development of timely and accurate POR Statements and Service
Action Plans (SAPs) which prevented future occurrences.
AT&T, Piscataway, NJ
Change Implementation Coordinator, Orlando, FL (1997
- 1999)
Performed functions related to systems change management.
Coordinated software and hardware changes and installations among internal and
external user groups which identified and resolved change conflicts.
Led post-mortem, change review, pre-installation and post-installation meetings
as needed which minimized recurring issues.
Data Processing Associate, Kansas City, MO and Orlando,
FL(1993 - 1997)
Controlled, monitored and operated z/OS, VM, UNIX, Windows and Teradata
computer systems and local communication / network applications.
EDUCATION
Master of Science (MS), Information Technology
Barry University, Miami, FL
Bachelor of Professional Science (BPS), Human Resource Management
Barry University, Miami, FL
Associate of Applied Science (AAS), Computer Information Science
Austin Community College, Austin, TX
PROFESSIONAL DEVELOPMENT
Certified Information Systems Auditor (CISA )
Currently preparing for Certified Information Security Manager (CISM ) exam
in December 2010
AFFILIATIONS / ASSOCIATIONS / MEMBERSHIPS
Member of ISACA (Information Systems Audit and Control Association),
Central Florida Chapter
Contact this candidate