Joe Campbell ***************@*****.*** 864-***-**** Williamston, SC 29697
https://www.linkedin.com/in/joescampbell/
INFORMATION SECURITY COMPLIANCE
Results-driven I.T. professional with notable success within the information security and systems support fields. Experienced in planning, implementing, and maintaining multiple factory support systems. Vast knowledge of information security practices, policies, and compliance. Ability to work with multiple and diverse groups to successfully deliver security compliance and I.T. deliverables. Capable of defining, deploying, and monitoring risk management, compliance, and information security programs while functioning as an information security consultant. Eleven years I.T. network and systems support that includes five years of information security compliance and risk management.
Strengths and Competencies
Access Management Security Assessments Security Awareness HIPAA Six Sigma Green Belt Compliance Firewall SCCM RSA Archer Active Directory Risk Management Security Policies Network Administration QualysGuard Symantec Vulnerability Management PCI/DSS Patch Management Web Application Security ISO 27001
PROFESSIONAL EXPERIENCE
INFORMATION SECURITY ANALYST/ACCESS CONTROL SPECIALIST Jan 2018 – Present
FGP TECHNOLOGY
Account creation for all employees (on-boarding, transfers, and terminations).
Create and maintain technical documentation for the Information Security department.
Assist with the implementation of security for critical information systems.
Assist with quarterly user reviews of all in-scope applications for Sarbanes-Oxley.
Ensure that adequate and effective IT controls exist to meet the current and future security compliance requirements found in laws and regulations.
Identify current and future internal and external information security risks/vulnerabilities. Identify the best ways to mitigate information security risks.
Assist with IT data security change management, disaster recovery, and compliance process and initiatives.
Active Directory administration.
SUPERVISOR June 2016 – Aug 2017
CYBER CRIME RESPONSE AGENCY
Supervisor of volunteers within the Investigations Unit. I ensure that volunteers within the agency meet the required number of hours per week, complete cases as assigned, and perform training as required.
Provided identity and access management for the agencies SharePoint, timeclock, and ticketing applications.
Conduct online investigations involving child predators, cyber bullying, identity theft, fraud, and computer hacking.
Train new volunteers in the areas of conducting child predator operations and Internet investigations.
Assist in interviewing potential new volunteers of the agency.
Perform audits of the agency’s information systems and related processes following the ISO 27001 framework.
INFORMATION SECURITY COMPLIANCE ANALYST 2011 - 2015
CATERPILLAR, INC.
Support of Caterpillar’s front line defense of networks, endpoints, and information. Protected information from unauthorized access and violations.
Worked with key business and IT stakeholders and senior management to identify, define, and confirm key threats to information assets.
Performed scans of network, endpoints, and web applications for detecting vulnerabilities, technical control compliance, and policy compliance.
Created I.T risk notifications and developed defense strategies to eliminate or mitigate identified I.T. security risks.
Performed facility physical security assessments that identified areas for improvement and non-compliance. Worked with I.T staff., engineering, and facility management to remediate findings from these assessments.
Worked with tools for pushing antivirus definitions (Symantec) and patches (SCCM) to non-compliant end-points.
Developed and communicated user security awareness, training, and education program to safeguard information against accidental or unauthorized modification, destruction, or disclosure of critical information through mishandling of information.
Worked with the corporate firewall team to successfully review and implement firewall rules for secured communications.
Created and communicated reports for risk committees, I.T. support, and management.
Facilitated monthly meetings with I.T. Management to track information security projects and report security metrics.
Information security consultant for Caterpillar’s business units, vendors, and customers.
Ensured employee understanding and acceptance of information security awareness, compliance to security policies, and security tasks.
Supported, deployed, and trained employees on approved information security products.
Maintained a 98% compliance rate for the facilities in terms of antivirus and patch compliance.
Maintained 96% Windows and Unix Server technical controls for the facilities.
Maintained compliance with applications such as M.S. Office, Windows versions, Adobe, and Apple products.
Application compliance for facilities under my responsibility increased from 80% to 98% in a one-year period.
EDUCATION
Kaplan University
BACHELOR’S DEGREE IN INFORMATION TECHNOLOGY
Villanova University
MASTER CERTIFICATE IN INFORMATION SYSTEMS SECURITY
Greenville Technical College
ASSOCIATE’S DEGREE IN COMPUTER TECHNOLOGY
Cybray.it
Certificate in HIPAA, Certificate Number C-69af4f72f-e1455114
Certificate in PCI/DSS, Certificate Number C-69af4f72f-4e1adcdc
Certified in Risk and Information Systems Controls, Certificate Number C-69af4f72f-b763449f
Certificate in CISA, Certificate Number C-69af4f72f-cf43dbc