Asong Akunju

Laurel, MD *****

Email : ad0xmr@r.postjobfree.com

Tel: 240-***-****.

Professional Summary:

Contribute towards the success of your organization with a 8 years plus experience and also being part of an essential resource in protecting information and information systems from unauthorized access, uses, disclosure, disruption, modification, or destruction to enhance your information confidentiality, integrity and availability through compliance with Federal Institutional and Industrial information technology standards. Knowledgeable in RMF process and FISMA. knowledgeable in NIST Special Publications and well verse in developing System Security Plan and accompanying artifacts like POA&Ms, SAR and general A&A documentation. I am also a Certified scrum master offering 8 years of experience in improving processes and complex product delivery by implementing agile environment. Hands on in training teams and supporting product owner to remove impediment and backlog, enhance velocity and help team adopt agile methodology.

Employment History:

Paragon systems Inc. From December 2018 to present Cybersecurity Analyst.

• Assist System Owner and ISSO in preparing Authorization Package for Major/Minor Application systems, making sure that security controls adhere to a formal and wellestablished security requirement referencing SP 800-53 rev4.

• Collaboration with ISSO to review and analyze security vulnerability scan and coordinating the remediation response to system security administrators/engineering teams.

• In coordination with other team members, we ensure that during the A & A process, the appropriate RMF launch stems are taken in the implementation of the Risk Management Framework (RMF) throughout the complete process cycle, from the system categorization stem through to continuous monitoring.

• Provide guidance and support to system owners during the privacy documentation development phase to ensure that each document captures how Personally Identifiable Information (PII) is collected, maintained, secured, disseminated, and dispose of.

• Conducts RMF first step kicks off meeting, initial risk assessment and categorization of information security into Low, Moderate and High system centered on Confidentiality, Integrity, and Availability (CIA) of the information type referencing FIPS-199, NIST 800- 30.

• Select and draft security control baseline in accordance with SP 800-53 rev4 and FIPS 200.

• Initiate, update, coordinate and track the patching and remediation of security weaknesses as they are documented in the Plan of Action and Milestones

(POA&M).

• Conduct Systems Risk Assessment through Risk Analysis assessed the various assists within the systems authorizing boundaries and rigorously identified all possible vulnerabilities that exist within the system. Royal Women Development Council.

March 2011- November 2018 Junior level analyst

• Conducted RMF briefings to the client explaining the life development cycle of the system.

• Performed categorization of new systems using FIPS 199 and NIST 800 -60 Vol. 1 and 2.

• Selected security and privacy controls for systems based on the impact level, using NIST SP 800 53 as a guide.

• Scheduled and conducted assessment kick-off meetings with the ISSO, System Owners and other stakeholders.

• Developed the Security Assessment Plan based on the controls to be assessed.

• Performed assessment of information systems based on the Risk Management Framework (RMF) to ensure all controls meet security requirements.

• Had working sessions with Subject Matter Experts (Security Administrators or System Engineers) to collect artifacts to satisfy controls and collaborated with other security personnel on security assessment activities.

• Assisted in implementing data in the information system’s assessment and authorization tool known as CSAM (Cyber Security Assessment and Management).

• Developed the Standard Operating Procedures SOPs needed in creating the A and A processes.

• Reviewed and updated security documentation governed by NIST 800 series and organizational policies.

• Provided continuous security monitoring of assigned systems and make decisions either in

Certified Scrum Master (CSM

PROFESSIONAL EXPERIENCE

Bank of America Charlotte, NC July 2017-Present

Certified Scrum Master

Removes impediments and guides the team to remove impediments.

Use scrum metrics( burndown / burnup, velocity)

Manage all scrum boards (physically or virtual)

Facilitate scrum ceremonies/events: Daily stand-up, Sprint Planning, Sprint Review/Demo, and Sprint retrospective meeting.

Facilities team’s planning and tracking activities while coaching in agile principle.

Coaches the team on how to use Agile/Scrum practices to achieve incremental value..

Made sure user stories and task boards were being updated to ensure transparency and effective communication between the team members.

Coaching new Scrum Master during their orientation periods to understand our organization specific processes.

Assisted with internal/external communications, to help improve transparency.

NIH Bethesda, MD March 2003-June2017

Certified Scrum Master

Facilitate scrum ceremonies/events: Daily stand-up, Sprint Planning, Sprint Review/Demo, and Sprint retrospective meeting.

Lead the team efforts towards continuous improvement

Educate and reinforce scrum methodology and the agile framework.

Scheduling and allocating work, providing advice and guidance and resolving problem to meet technical performance and financial objective.

Effectively tracked teams progress including burndown, velocity, and release forecasting.

Helped team to inspect and adapt processes.

Reported sprint release, impediments, dependencies, action items to Upper management.

Maintain relevant metrics to help the team monitor their performance

Assisted with internal/external communications, shared information on the task board to help improve transparency

Helped in empowering teams through servant leadership. Engaged with Product Owner to ensure product goals and requirements are met.

Certifications:

Certified Authorization Professional (CAP)

CompTIA Security+ (Certification)

Scrum master (Certification)

EDUCATION:

Master Student in Cybersecurity management and policy at UMGC

.

Bachelor Degree in Health Science from Stratford University.

Contact this candidate