Post Job Free
Sign in

Security Information

Location:
Columbus, OH
Salary:
Negotiable
Posted:
May 03, 2019

Contact this candidate

Resume:

Franklin Asong

Email: *************@*****.***

Phone: 614-***-****

An experienced Scrum master and a lean agile change agent with 4 years of experience in leading teams and organizations in implementing projects using different agile frameworks to meet robust market changes. A servant leader who understands that her growth comes from the growth of her team and will do everything to keep them focus and reliably deliver on sprint their goals. Responsible for directing teams, ensuring that organization goals are attained, implementing, and monitoring software development processes.

Technical Skills

Application lifecycle Management tools

Quality Center (ALM/EIM), JIRA, TFS (Team Server Foundation) Confluence, Kanban.

Other

Microsoft Office (Excel, Microsoft Project, Access, Outlook), Microsoft power point.

Scrum Master – Kaiser Permanente

(January 2018- Present)

Coordinated and participated in weekly estimation meetings to provide high-level estimates Story Points for backlog items.

Developed and followed agile project management plan Agile Ceremonies. Facilitated build requirements log product backlog with cost estimates and priority.

Conducted Grooming meetings, Scrum Daily standup, Product backlog, Sprint Planning, Sprint Review & Sprint Retrospective meetings.

Determined the team capacity velocity from historical data. Created Work Break down structure user stories and corresponding activities tasks.

Improved team velocity by incorporating capacity planning into sprint planning sessions.

Monitored the project progress and radiated the information to stake holders. Identified and mitigated team risks and impediments (Blocking Issues, Critical Defects) on daily basis.

Helped the Product Owner in their efforts to manage the backlog and guide the team while facilitating a healthy team dynamic with respect to priorities and scope

Proactively and effectively communicate in various verbal and written formats with internal and external stakeholders on project scope, budget, and schedule status of implementations

Created and facilitates trust between development teams, product owners, and other stakeholders

Coached Scrum principles and practices and ensured they were followed

Strong communication skills, written and verbal, with the ability to easily interact across all levels of the organization

Strong critical thinking skills, ability to be creative

Scrum Master –Beth Israel Hospital

(March 2015–December 2017)

Protected team from internal and external distractions to help them focus on daily QA activities to be productive and growing in ability

Actively participated in sprint planning activities, daily stand ups, sprint reviews, sprint retrospectives conflict resolution meetings

Focused on developing more trusted and collaborative team environment where problems can be raised without fear of blame or being judged with a complete focus on problem resolution

Assisted internal and external communication, improving transparency, and radiating information

Partnered with the Product Owner, especially with respect to grooming and maintaining the product backlog.

Active participating in establishing and provide Vision of the term and gain consensus base on acceptance criteria

Served as Scrum Master for the project and ensures team maintains focus on quality and continuous delivery with some support from coach

Actively participated scrum of scrum meetings with program manager

Encouraged self-organization, meaning that the team itself should remove issues wherever possible

WORK EXPERIENCE

U.S DEPARTMENT OF THE TREASURY

BUREAU OF THE FISCAL SERVICE - Parkersburg, WV// Jan 2013– March 2015

Cyber Security Analyst- Security and Compliance

Knowledge of Several Computer Environments: Performed Update, Install, Configure, evaluation and guidance on security control implementation on multiple environments include Windows server, Windows 7, Windows XP, Red Hat 6/7 and Centos 6/7.

Security Documentation: Perform updates to System Security Plans (SSP) Using NIST 800-18 as a guide to develop SSP, Risk Assessments, and Incident Response Plans, create Change Control procedures, and draft, review, update Plans of Action and Milestones (POAMs).

POA&M Remediation: Performed evaluation of policies, procedures, security scan results, and system settings in order to address controls that were deemed insufficient during Certification and Accreditation (C&A), RMF, continuous monitoring, and FISCAM audits.

Expertise in National Institute of Standards and Technology Special Publication (NIST SP) documentation: Performed assessments, POAM Remediation, and document creation using NIST SP 800-53 Rev.1 and NIST SP 800-53 rev.4.

Developed Solution to Security weaknesses: Developed solutions to security weaknesses in the Requirement Traceable Matrix (RTM) and SAR, while working on POA&M remediation and Corrective Action Plan (CAP. Assisted ISSOs create solutions to weaknesses based on system functionality and pre-existing architecture and an Audit liaison officer with respect to respond to auditor.

Communications between multiple clients to perform POA&M remediation for CAP remediation. Handled internal communications within Office of Information Security and external communications with several different divisions on a daily basis. Maintain excellent working relationships with both internal and external customers using communication skills.

Provided services as security controls assessors (SCAs) and perform as an integral part of the Assessments and Authorizations process to include A&A scanning, documentation, reporting and analysis requirements. Analyzed current threats to information security and systems. Analyze security findings and data. Published reports and keeps metrics for client systems.

Worked with Security Operation Center Analyst in making sure Intrusion detection and prevention systems (IDS/IPS) such as SNORT to analyze and detect Worms, Vulnerabilities exploits attempts and IDS monitoring and management using Security Information and event management (SIEM-SECURITYCENTER BY TENABLE),to collect and Analyze large volumes of logs and network traffic and alerts to assess, prioritize and differentiate between potential intrusion attempts and false alarms. Identified trends and root causes of system failures or vulnerabilities using NESSUS Vulnerability Scanner, Nmap to scan ports, weak configuration and missing patches.Assured that the Information Systems Security department's policies, procedures, and practices as well as other systems user groups are in compliance with FISMA, NIST, and general agency standards.

Worked with ISSO and Security team to Access Security Controls selected, in Updating SAP, ROE where Vulnerability scanning and penetration testing procedures are included in the assessment, conduct assessment meeting kickoff and security Control meeting with ISSO and System Owner .Assessment finding result be reflexed on the (RTM) or Test case and all weakness noted be reported in our SAR report.Knowledge of SAN-20 and ISO 27001 Security controls and Mapping with NIST.

Reviewed documentation to include System Security Plan NIST 800-18 as a guide, Authorization to Operate (ATO),Security Assessment report(SAR) using NIST800-30 as a guide, FIPPS 199 System Categorization using NIST 800-60 Vol1/Vol2 based on confidentiality, integrity and availability (CIA), policy and procedures, e-authentication, privacy threshold analysis (PTA), privacy impact analysis (PIA), contingency plan (CP) and interconnection security agreement as per NIST 800-47, certification and accreditation (C&A) packages and system standard operating procedures.

Education:

Bachelor’s Degree: Biochemistry

Associate’s Degree: Cyber security

Professional certifications: Professional Scrum Master Certified (PSM1)



Contact this candidate