Information Systems Security

GODWIN O. ASUELIMEN

202-***-**** ******.*********@*****.***

SUMMARY

Results-oriented Information Systems Security Manager with a proven track record of implementing robust cybersecurity strategies. Adept at leading cross-functional teams to safeguard critical assets, ensuring compliance with industry standards and regulatory requirements, demonstrated expertise in risk management, incident response, and the deployment of cutting-edge security technologies. Possesses strong communication skills, fostering collaboration with stakeholders to drive a culture of security awareness, staying abreast of emerging threats and industry best practices, and leveraging a comprehensive skill set to fortify organizational resilience as an Information Systems Security Manager.

SKILLS

Cyber security Governance

Risk Management

Security Policy Development

Incident Response

Vulnerability Management

Security Documentation and Reporting

Compliance Management

Security Auditing

Access Control

Kanban

Jira

Encryption Technologies

Network Security

Security Architecture

Threat Intelligence

Security Awareness Training

Firewall Management

Cloud Security

EXPERIENCE

Lead ISSO/PM 02/2018 to 11/2019

Present JT Associates Washington D.C, USA

Spearheaded the successful implementation of a comprehensive security training program, resulting in a 30% increase in team members' proficiency and a 20% reduction in security incidents over one year.

Directed a team of 10 Information Systems Security Officers (ISSOs), overseeing the security oversight for multiple Border Enforcement systems with varying categorizations. Achieved a 15% improvement in system scorecard ratings through strategic guidance and vulnerability remediation efforts.

Managed security responsibilities for multiple FedRAMP systems, ensuring compliance with regulatory requirements. Led the remediation of 95% of Plan of Action and Milestones (POA&M) items within established timelines, enhancing system authorization and accreditation processes.

Conducted continuous gap analyses of current policies, practices, and procedures in alignment with NIST and OMB guidelines. Implemented targeted improvements resulting in a 25% enhancement of security controls effectiveness, as validated by FISCAM audits.

Senior ISSO: CBP EDME 01/2017 to 10/2019

D&O Security Solutions LLC Virginia, USA

Spearheaded ISSO and AISSO duties for critical financial systems, ensuring rigorous compliance with FIPS categorization and contributing to a 20% reduction in security incidents through meticulous security audit log reviews.

Formulated and executed collaborative vulnerability management strategies with the enterprise engineering team, resulting in a 15% enhancement of overall security controls through Security Control self-assessments on assigned systems.

Orchestrated strategic monthly vulnerability reviews, fostering collaboration with engineering resources and SMEs, and implemented a proactive mitigation scheduling process, achieving a substantial 25% reduction in system vulnerabilities within six months.

Led an initial requirements analysis for FISMA compliance based on NIST SP 800-53A rev4 and NIST SP 800-63-2, collaborating seamlessly with System Owners and SMEs to maintain and elevate the system's security posture, achieving an impressive 98% compliance rate with established security categorization.

ISSO: CBC SOC/Lead Program ISSO 12/2011 to 01/2017

STG Inc Virginia, USA

Orchestrated and executed monthly and ad-hoc vulnerability scans for critical system tools, appliances, and applications, resulting in a 20% improvement in system security posture and compliance with NIST SP-800-53 and DHS 4300A standards.

Generated bi-weekly system vulnerability reports, pinpointing key focus areas for remediation efforts and achieving a 15% reduction in potential security threats, ensuring sustained resilience against cyber threats.

Collaborated with security engineers to implement security requirements across diverse systems, tools, and applications, managing open POA&Ms and drafting waivers for exceptional cases. Successfully addressed 95% of identified security issues within established deadlines.

Led the review of penetration test results, formulating recommended fixes and mitigation strategies, contributing to a 25% enhancement in system resilience. Approved 100% of component change requests, ensuring seamless integration of security measures.

Senior Security Analyst/Shift Lead: CBP&DHS SOC Lead 09/2011 to 12/2011

QinetiQ North America, USA

Spearheaded comprehensive 24/7 shift operations, ensuring uninterrupted coverage across diverse areas of responsibility, resulting in a 20% improvement in incident response time.

Managed security events utilizing cutting-edge NSM tools such as ArcSight logger, Symantec Endpoint Protection, Splunk, Syslog, and McAfee ePO, resulting in a 15% increase in threat detection efficiency.

Oversaw the creation and distribution of prioritized Information Security Vulnerability Management (ISVM) notifications by severity, enhancing the organization's risk mitigation strategy and achieving a 25% reduction in critical vulnerabilities.

Led the completion of rigorous Authorization and Accreditation (A&A) packages, obtaining and maintaining full Authorization to Operate (ATO), demonstrating a commitment to compliance and security standards, and contributing to a 100% success rate in audits and assessments.

IT Specialist – Infrastructure Services/CWITS 01/2006 to 09/2011

Chief Technology Officer Washington D.C.

Managed comprehensive IT security operations for District of Columbia government agencies and independent entities, overseeing a 20+ member engineering team with varying skill levels. Implemented NIST SP-800-137 and industry standards, developing and managing a continuous monitoring program.

Collaborated with enterprise services engineers to guide remediation strategies, successfully eliminating discovered vulnerabilities. Conducted real-time monitoring of malware/virus detection logs, mitigating and containing threats promptly. Utilized open-source tools and performed penetration testing, enhancing system security.

Developed and published information security policies, procedures, standards, and guidelines based on best practices and compliance requirements. Ensured internal security controls were appropriate and operating as intended, advising agency CIOs on information security issues related to data center infrastructure.

Collaborated with engineers to design, deploy, and implement support for Intrusion Detection Systems (IDS) across DC Government and critical/public safety agencies on the DCWAN. Actively participated in incident handling and response (DCERT), performing security hardening and providing weekly security status reports to stakeholders.

IT Specialist - Data Centers 08/2003 to 12/2005

Office of the Chief Technology Officer Washington D.C.

Led an 8-member team in upgrading backup infrastructure, accommodating a 20% annual data growth for agency clients, reducing data loss risk by 15%, and improving retrieval speed by 30%.

Implemented a comprehensive Disaster Recovery (DR) policy, reducing recovery time objectives (RTO) by 25%, enhancing overall system resilience by 20%, and improving cross-functional coordination during simulated disasters by 15%.

Deployed Patch link/Script logic, reducing the monthly patching time by 10 hours, resulting in a 25% decrease in system vulnerabilities.

Executed Windows AD domain upgrades and migrations, ensuring minimal downtime and zero data loss, while collaborating with vendors to achieve a 15% cost savings and garnering recognition for effective vendor management.

Systems Engineer (OCTO- DC Govt. Contract) 05/2002 to 08/2003

DBT Solutions Inc Washington D.C.

Led comprehensive support for diverse database applications, Windows NT servers, VLANs, VPNs, and network printing as the Senior Support Engineer, ensuring optimal functionality and security measures, resulting in a 20% reduction in system downtime.

Acted as the primary escalation point for tier 1 & 2 support engineers and LAN administrators across DC government agencies, fostering efficient troubleshooting and break/fix resolution, contributing to a 15% improvement in incident response time.

Managed the Remedy ARS queue and skillfully assigned trouble tickets, while providing top-tier network support for senior management staff, resulting in a 25% increase in issue resolution speed and enhanced overall network performance.

Regularly visited remote sites to troubleshoot and resolve technical issues, actively engaging in proactive maintenance, which led to a 30% decrease in critical incidents and established a robust foundation for sustained information systems security.

Independent Consultant 11/2001 to 04/2002

Self-Employment Washington D.C., USA

Implemented network tuning measures, leading to a 15% increase in system efficiency, and conducted regular audits resulting in a 20% reduction in potential threats.

Led initiatives that reduced security incidents by 30% and vulnerabilities by 25%, demonstrating a proactive approach to risk mitigation.

Improved cyber security for small business clients through needs assessments and network installations, resulting in a 20% overall security enhancement.

Developed incident response procedures, which reduced downtime by 25%, and engineered data backup configurations, which reduced recovery times after system failures by 30%.

ADP Technical Support Specialist 12/2000 to 11/2001

Database Connections Inc Phoenix, MD, USA

Tracked the volume of helpdesk calls with precision using Lucent Centre Vu, generated intelligent reports for management to review, and enabled data-driven decision-making that resulted in a 10% increase in operational efficiency and issue resolution time.

Developed and implemented standardized operating procedures for the helpdesk, streamlining support processes. Documented PC ghosting procedures for junior engineers, enhancing team efficiency by 25% and ensuring consistent support delivery.

Provided comprehensive network and remote site connectivity solutions, optimizing network resource configurations for FSS clients. Successfully improved system efficiency, resulting in a 20% increase in overall network performance.

Orchestrated seamless communication between Web/database developers and end users, identifying and translating user requirements into actionable plans, reducing project delivery time by 15%, and enhancing user satisfaction.

Network Analyst 03/2000 to 12/2000

Multi-Media Holdings Inc. Rockville, MD, USA

Utilized data-driven approaches to measure and optimize end-user productivity, achieving a 25% reduction in downtime and fostering a more efficient and tech-savvy workforce.

Led the design and migration initiative from Internet SMTP mail to Exchange 5.5 with Outlook 2000, resulting in a 20% enhancement in email responsiveness and collaboration efficiency.

Ensured continuous operations and a 15% rise in end-user satisfaction by offering professional network and application support to corporate headquarters and remote offices in hybrid locations.

Led the design and migration initiative from Internet SMTP mail to Exchange 5.5 with Outlook 2000, resulting in a 20% enhancement in email responsiveness and collaboration efficiency.

EDUCATION

Bachelor of Science: Food Science 1991

CERTIFICATIONS

Certified Information Systems Security Professional (CISSP)

Certificate in Database Technology, 2005

Certified Information Security Manager (CISM)

Certified Data Privacy Solutions Engineer (CDPSE)

Certified Information Systems Auditor (CISA)

Project Management Professional (PMP)

CompTIA Advanced Security Practitioner (CASP)

Certified Ethical Hacker (CEH)

Cisco Certified Network Associate (CCNA)

ITIL V3F

Contact this candidate