Post Job Free
Sign in

Information Security Risk Management

Location:
Brooklyn Park, MN, 55444
Posted:
June 26, 2024

Contact this candidate

Resume:

EMPLOYMENT HISTORY

JAN **** - NOV ****

Information Security Risk Compliance Analyst, MoneyGram International, Texas (Remote) Governance

• Monitored governance processes, recommended improvements, and collaborated with business units for alignment with corporate governance objectives.

• Conducted and facilitated compliance audits and assessments to evaluate vendor controls against NIST SP, ISO 27001, PCI DSS, SOC 1, 2, 3, and other security frameworks.

Compliance

• Monitored changes in regulatory environments and assessed potential impacts through regulatory surveillance, audit reviews, impact assessments, risk management, and technology integrations.

• Collaborated with teams to understand compliance requirements and assist in achieving compliance with GDPR, HIPAA, PCI DSS, ISO 27001, SOC 1 & 2 through GAP assessments and improvements. Risk Management

• Identified, assessed, and documented risks by defining risk criteria and using historical data, interviews, and industry reports.

• Developed and implemented risk assessments, scoring methodologies, and evaluated risk impacts on financial, operational, and other relevant areas.

• Performed PCI-DSS Self-Assessment Questionnaire (SAQ) evaluations, gathered evidence, and produced Reports of Compliance. Third-Party Compliance

• Conducted thorough risk assessments of third-party vendors to identify potential compliance risks.

• Evaluated vendors' security policies, procedures, and practices against industry standards and regulations.

• Monitored third-party compliance with contractual obligations, industry standards, and legal requirements.

• Performed due diligence on prospective vendors to assess their compliance posture.

• Managed and investigated compliance-related incidents involving third-party vendors. MAY 2021 - NOV 2021

Information Security Analyst, Marigold Solutions Inc., VA (Remote)

• Examined Nessus vulnerability scan results, collaborating with Remediation Team to resolve vulnerabilities.

• Assessed SIEM tools to investigate incidents and determine threats.

• Developed vulnerability reports using CVEs, formulating patching methods.

• Created incident response plans, workflows, and standard operating procedures (SOPs).

• Reviewed internal policies to understand IT environment and organizational security requirements.

• Authored Security Assessment Reports (SAR) and Plans of Action & Milestones (POA&M). JUN 2017 - NOV 2020

Environmental Health and Safety Assistant Director, University of Minnesota Children's Hospital, Fairview

• Monitored security logs for HIPAA breaches.

• Designed and implemented training programs and procedures for regulatory compliance.

• Updated policies and procedures on the Epic system.

• Conducted risk assessments and continuous monitoring to ensure effective controls. 1716 Laramie Trail, Brooklyn Park, United

States, 55444

*********@*****.***

763-***-****

PRINCE GADOGBE

INFORMATION SECURITY PROFESSIONAL

PROFESSIONAL SUMMARY

Information Security Professional with over 5 years of experience specializing in risk management, security auditing, and compliance. Proficient in leveraging skills in security architecture and cyber threat intelligence to enhance organizational security postures. Demonstrates a strong commitment to maintaining security standards across various frameworks including ISO 27001, SOC, and PCI-DSS.

• Performed safety inspections and audits; ensured compliance with regulations.

• Investigated workplace accidents and environmental incidents, recommended preventive measures.

• Collaborated with HR, Operations, and Facilities for a holistic EHS approach. SEP 2013 - MAY 2016

Computer Support Specialist, Carley Inc., MN

• Reviewed security policies and updated software.

• Functioned as main IT contact for issue resolution and vulnerability remediation.

• Conducted periodic risk assessments and continuous monitoring.

• Recommended network security standards and upgrades to management. EDUCATION

JAN 2023 - JUL 2023

IT Cybersecurity Bootcamp, University of Minnesota-Twin Cities Graduated with Certification

Bachelor of Science, Walden University

IT Cybersecurity Bootcamp, Crest Consulting Group, MD COURSES

AUG 2022 - SEP 2024

Security+ at CompTIA

SKILLS

Risk Management Compliance

Cyber Threat Intelligence Network Security

Security Operation Security Auditing

Assessment Security Architecture

Social Engineering Awareness

L INKS

LinkedIn



Contact this candidate