Keith Hook, CISSP
Governance, Risk Management & Compliance Analyst (GRC)
Professional Profile:
Demonstrated experience in the implementation of project management and procedural lifecycles with knowledge of information security governance, access controls, business continuity, disaster recovery planning, risk governance, data protection, identity and access management, and risk assessments and the development, implementation and maintenance of HRIS systems and functions supporting the talent management plans, goals and objectives. Authorized to work in the US for any employer.
SKILLS:
Risk Management
Staff Development & mentoring
Information technology
Environmental Management Systems
Compliance Management
Team Building/Leadership
Comprehensive Cost Management
Business Development
Information Security Strategies
Develop workforce strategies
Screen and train employment candidates
Strong Written and Verbal capabilities
Diversity and inclusion
WORK EXPERIENCE
GRC Analyst
Santander - Dallas, TX - 2015-05 - Present
Engages with technical process owners to understand process steps, draft procedures, and attain completed documentation that aligns with the IT Governance program thru process audits and assessments.
Coordinates the execution of control mechanism/testing against technical procedures to ensure they are being executed in an accurate and timely manner and documented in the repository system with required artifacts.
Collaborate with functional groups to ensure that business objectives are met.
Track remediation plans to ensure applicable controls are implemented to address gaps.
Serves as a key liaison with internal and external Auditors and Assessors, and Enterprise business operations to monitor and track system enhancements.
Develop and implement policies, procedures and standards to align enterprise objectives with industry best practices
President/Owner
MAJ Investments - Dallas, TX - 2002 - Present
Design and implement policy, procedural, strategic and financial planning. Initiate, coordinate and negotiate purchases and settlements.
Retain complete responsibility and authority to plan and complete projects.
Manage account finances and contracts.
Assess risk and data protection.
Engage in research, gap analysis, problem identification and remediation.
Assure adherence to relevant laws, regulations, guidelines and specifications.
Regional Account Manager
Airgas Specialty Gases - Dallas, TX - 2007 - 2014
Met, recorded and maintained federal and local compliance requirements.
Provided technical advice and guidance.
Aided in the formulation and implementation of emergency response.
Maintained and strengthened governance mechanisms and security standards.
Analyzed processes to identify risks and ensure a completed alignment with Governance and Risk Management programs, policies, procedures and industry best practices.
Ensure compliance with HR policies and procedures
Perform Vendor Security assessments, performing on site assessments, reviewing security test reports, and analyzing and developing security and safety requirements.
Train, coach, advise and provide technical assistance and resources to the human resource team, liaisons, managers and supervisors to assure improved performance and utilization of HRIS systems for increased proficiency and responsiveness in all service delivery areas.
Serve as a key driver for system process optimization recommending process, policy changes, customer service improvements, customer service improvements and innovative solutions.
Branch Manager
Praxair - Dallas, TX - 2002 - 2007
Ensured EMS,SPCC, DOT, EPA, EEOC, HIPAA and OSHA compliance.
Planned, tested, revised and implemented operational and financial initiatives.
Implemented site incentives to meet company goals and objectives.
Conducted employee evaluations, Diversity & inclusion, and compliance and safety training sessions.
Maintained complete documentation of site and account outages.
Resolved daily systematic and operational needs, ensuring minimal loss of work productivity.
Collaborates with Enterprise Compliance SME's.
Train, coach, advise and provide technical assistance and resources to the human resource team, liaisons, managers and supervisors to assure improved performance and utilization of HRIS systems for increased proficiency and responsiveness in all service delivery areas.
Serve as a key driver for system process optimization recommending process, policy changes, customer service improvements, customer service improvements and innovative solutions.
Develop and implement standard operating procedures, protocols, etc. ensuring procedural integrity of HR data and standardization of HRMS/HRIS functions (i.e. maintain HRMS system tables supporting HR and payroll components)
Program Coordinator
Tulane University - New Orleans, LA - 1990 - 2002
Procured and implemented environmental management systems education initiatives, including business continuity planning and disaster recovery initiatives and integrated financial management systems with security disciplines.
Coordinated with individuals and organizations at the university, municipal and national levels.
Coordinate recycling collection schedules to optimize service and efficiency.
Coordinate shipments of recycling materials with shipping brokers or processing companies.
Design community solid and hazardous waste management programs.
Serve as a lead and project manager in the areas of strategic and accurate data collection, management, and analysis; prepare routine compliance and specialized reports to inform and advise audits, workforce trends, human resources transactional processes and change management strategies.
EDUCATION
BA in Applied Technology and Performance Improvement
University of North Texas – Information Management System
Paralegal Program
School of Continuing Studies - Tulane University – Paralegal Studies
Certificate in Continuing Education Program
Collin College – Computer Information Systems
SKILLS
Communicates clearly and effectively, Lean/Six-sigma
Working Knowledge of EMS, PCI-DSS, HIPAA, GLBA, OFAC, SOX & SOC
eGRC repository systems, Archer, ServiceNow, SharePoint, and Technical Writing
Proficient with Microsoft Office (Word, Excel, PowerPoint)
Knowledgeable of Industry Governance, Risk Management and Compliance best practices
Experienced in Data Protection, Identity Access Management and information Security
Diversity and Inclusion Analysis
MILITARY SERVICE
Service Country: United States
Branch: US ARMY
Rank: E4
1983-11 - 1986-11
13F10 Fire Support Specialist, Honorable Discharge
Commendations:
Army accommodations Medal
CERTIFICATIONS/LICENSES
CISSP - Cyber Information Security Specialist Professional
GROUPS
ISACA
National Honor Society
US Army – ex service member
ACHIEVEMENTS
City Recycling Chairman for the City of New Orleans, 1994
Mayor’s Environmental Advisory Committee Member, New Orleans, Louisiana, 1994-1996
New Orleans Jazz and Heritage Environmental Management Systems Consultant 1994-1998
New Orleans
ADDISTIONAL SKILLS:
Communicates clearly and effectively, Lean/Six-sigma
ISO2700, NIST, Cobit 5, COSO
Working Knowledge of PCI-DSS, HIPAA, GLBA, OFAC, SOX & SOC
eGRC repository systems, Archer, ServiceNow, SharePoint, Workday, Sailpoint & Splunk, and Technical Writing Proficient with Microsoft Office (Word, Excel, PowerPoint)
Knowledgeable of Industry Governance, Risk Management and Compliance
Experienced in data protection and information security
Diversity and Inclusion Analysis