Keith Hook, CISSP

Governance, Risk Management & Compliance Analyst (GRC)

Professional Profile:

Demonstrated experience in the implementation of project management and procedural lifecycles with knowledge of information security governance, access controls, business continuity, disaster recovery planning, risk governance, data protection, identity and access management, and risk assessments and the development, implementation and maintenance of HRIS systems and functions supporting the talent management plans, goals and objectives. Authorized to work in the US for any employer.

SKILLS:

Risk Management

Staff Development & mentoring

Information technology

Environmental Management Systems

Compliance Management

Team Building/Leadership

Comprehensive Cost Management

Business Development

Information Security Strategies

Develop workforce strategies

Screen and train employment candidates

Strong Written and Verbal capabilities

Diversity and inclusion

WORK EXPERIENCE

GRC Analyst

Santander - Dallas, TX - 2015-05 - Present

Engages with technical process owners to understand process steps, draft procedures, and attain completed documentation that aligns with the IT Governance program thru process audits and assessments.

Coordinates the execution of control mechanism/testing against technical procedures to ensure they are being executed in an accurate and timely manner and documented in the repository system with required artifacts.

Collaborate with functional groups to ensure that business objectives are met.

Track remediation plans to ensure applicable controls are implemented to address gaps.

Serves as a key liaison with internal and external Auditors and Assessors, and Enterprise business operations to monitor and track system enhancements.

Develop and implement policies, procedures and standards to align enterprise objectives with industry best practices

President/Owner

MAJ Investments - Dallas, TX - 2002 - Present

Design and implement policy, procedural, strategic and financial planning. Initiate, coordinate and negotiate purchases and settlements.

Retain complete responsibility and authority to plan and complete projects.

Manage account finances and contracts.

Assess risk and data protection.

Engage in research, gap analysis, problem identification and remediation.

Assure adherence to relevant laws, regulations, guidelines and specifications.

Regional Account Manager

Airgas Specialty Gases - Dallas, TX - 2007 - 2014

Met, recorded and maintained federal and local compliance requirements.

Provided technical advice and guidance.

Aided in the formulation and implementation of emergency response.

Maintained and strengthened governance mechanisms and security standards.

Analyzed processes to identify risks and ensure a completed alignment with Governance and Risk Management programs, policies, procedures and industry best practices.

Ensure compliance with HR policies and procedures

Perform Vendor Security assessments, performing on site assessments, reviewing security test reports, and analyzing and developing security and safety requirements.

Train, coach, advise and provide technical assistance and resources to the human resource team, liaisons, managers and supervisors to assure improved performance and utilization of HRIS systems for increased proficiency and responsiveness in all service delivery areas.

Serve as a key driver for system process optimization recommending process, policy changes, customer service improvements, customer service improvements and innovative solutions.

Branch Manager

Praxair - Dallas, TX - 2002 - 2007

Ensured EMS,SPCC, DOT, EPA, EEOC, HIPAA and OSHA compliance.

Planned, tested, revised and implemented operational and financial initiatives.

Implemented site incentives to meet company goals and objectives.

Conducted employee evaluations, Diversity & inclusion, and compliance and safety training sessions.

Maintained complete documentation of site and account outages.

Resolved daily systematic and operational needs, ensuring minimal loss of work productivity.

Collaborates with Enterprise Compliance SME's.

Train, coach, advise and provide technical assistance and resources to the human resource team, liaisons, managers and supervisors to assure improved performance and utilization of HRIS systems for increased proficiency and responsiveness in all service delivery areas.

Serve as a key driver for system process optimization recommending process, policy changes, customer service improvements, customer service improvements and innovative solutions.

Develop and implement standard operating procedures, protocols, etc. ensuring procedural integrity of HR data and standardization of HRMS/HRIS functions (i.e. maintain HRMS system tables supporting HR and payroll components)

Program Coordinator

Tulane University - New Orleans, LA - 1990 - 2002

Procured and implemented environmental management systems education initiatives, including business continuity planning and disaster recovery initiatives and integrated financial management systems with security disciplines.

Coordinated with individuals and organizations at the university, municipal and national levels.

Coordinate recycling collection schedules to optimize service and efficiency.

Coordinate shipments of recycling materials with shipping brokers or processing companies.

Design community solid and hazardous waste management programs.

Serve as a lead and project manager in the areas of strategic and accurate data collection, management, and analysis; prepare routine compliance and specialized reports to inform and advise audits, workforce trends, human resources transactional processes and change management strategies.

EDUCATION

BA in Applied Technology and Performance Improvement

University of North Texas – Information Management System

Paralegal Program

School of Continuing Studies - Tulane University – Paralegal Studies

Certificate in Continuing Education Program

Collin College – Computer Information Systems

SKILLS

Communicates clearly and effectively, Lean/Six-sigma

Working Knowledge of EMS, PCI-DSS, HIPAA, GLBA, OFAC, SOX & SOC

eGRC repository systems, Archer, ServiceNow, SharePoint, and Technical Writing

Proficient with Microsoft Office (Word, Excel, PowerPoint)

Knowledgeable of Industry Governance, Risk Management and Compliance best practices

Experienced in Data Protection, Identity Access Management and information Security

Diversity and Inclusion Analysis

MILITARY SERVICE

Service Country: United States

Branch: US ARMY

Rank: E4

1983-11 - 1986-11

13F10 Fire Support Specialist, Honorable Discharge

Commendations:

Army accommodations Medal

CERTIFICATIONS/LICENSES

CISSP - Cyber Information Security Specialist Professional

GROUPS

ISACA

National Honor Society

US Army – ex service member

ACHIEVEMENTS

City Recycling Chairman for the City of New Orleans, 1994

Mayor’s Environmental Advisory Committee Member, New Orleans, Louisiana, 1994-1996

New Orleans Jazz and Heritage Environmental Management Systems Consultant 1994-1998

New Orleans

ADDISTIONAL SKILLS:

Communicates clearly and effectively, Lean/Six-sigma

ISO2700, NIST, Cobit 5, COSO

Working Knowledge of PCI-DSS, HIPAA, GLBA, OFAC, SOX & SOC

eGRC repository systems, Archer, ServiceNow, SharePoint, Workday, Sailpoint & Splunk, and Technical Writing Proficient with Microsoft Office (Word, Excel, PowerPoint)

Knowledgeable of Industry Governance, Risk Management and Compliance

Experienced in data protection and information security

Diversity and Inclusion Analysis

Contact this candidate