It Systems Customer Service

Ibrahim NAMBIEMA (PMP, CEH, CSM, Sec+)

Stephens City, VA 22655. ******.***@*****.***

*******.***@*****.*** https://www.linkedin.com/in/ibrahim-nambiema-b1811026

Professional Summary

Collaborative Cybersecurity Professional with over 7 years of experience in Information Assurance. Proficient in all 7 phases of A&A process; developing information security artifacts such as the A&A packages and emerging standards. Skilled crafting and updating key security documents such as Governance guidelines, SSP, SAR, POAM and CP as well as conducting risk assessment following NIST-RMF, CSF and FISMA guidelines. Demonstrated experience in securing the overall security posture of IT systems from preliminary risk assessment to continuous monitoring processes. Experienced assessing, auditing, and aligning security architecture plans and processes with security standards and business goals with analytical thinking, business acumen, flexibility, and customer service.

Skills

Develop, document & maintain security plans/controls

FISMA, FIPS, NIST SP 800s NIST-RMF/CSF, ISO27001

DoD 8570 IAT Level II Cert. Compliant, POA&M Mgt.

Advance skills in tenable products/vulnerability mgt.

Leadership, Communication, Teamwork

Compliance/Configuration Management; (DISA STIG)

SCAP scan, Assured Compliance Assessment (ACAS)

Project Management- Agile/Scrum/Waterfall

CSAM, Exacta, Security Venerator, Windows

BMC Remedy intermediary skills/ Event Logs

ServiceNow. ISVM, IAVM, Splunk, Open-VAS.

A&A, Incidence response, Risk & Patch Mgt.

CVSS V3.0, CVEs, OWASP Vulnerabilities

Analytical, Presentation to Sr. management

MS Suite (Excel, Word, Power Point)

Microsoft: Project, Visio, SharePoint, Teams

Work History

01/2024 to date

IT Security Specialist, Syneren Technologies, Tyson Corner, VA

I am responsible for digital and hardware cybersecurity for my company and clients. I perform ethical hacking activities with system owners’ permission. My roles and responsibilities include:

Lead vulnerability assessment: I Identify loopholes in software, networks, and servers to enable system to give system administrators a heads up to act proactively to ensure the Confidentiality, Integrity & Availability (CIA) of their systems

Conduct Penetration testing by measuring vulnerabilities in a computer system, web application, or network that could be exploited by anyone with malicious intent

Promote cybersecurity practices such as sanitizing systems, how to handle, transport, and store personal devices like computers, phones, and tablets securely

Advise organizations on how to improve their security posture and implement security solutions to ensure adherence to the CIA principles

Manage incident response by arming end point users and staff with preventive, defensive and recovery skills/tools to act timely and professionally when incidents occur

Develop and present assessment methods & findings with senior management and IT teams

05/2018 Information Assurance Specialist, NEOTEC LLC – Colombia, MD

to 12/2023

Perform Assessment & Authorization, develop A&A packages and oversaw the monitoring of security controls within agency IT systems and/or networks, in accordance with applicable agency policies, NIST guidance, OMB requirements, and Federal laws

Enhanced the overall security posture of agency IT systems & applications by 85%, assessing, monitoring & advising security teams in line with NIST RMF/FISMA standards

Coordinated efforts to eliminate vulnerabilities & bugs by creating, tracking, and updating plans such as SSP, SAR, POA&M, CP in line with FISMA/GDPR guidance

Championed agency’s security operations efforts, manage incident response activities, led IT security staff to utilize appropriate incident analysis techniques, procedures, and tools to ensure systems CIA

Increased resiliency of IT systems through risk analyses, leveraged intermediary skills in OWASP Zap and Burp suits to intercept features, fuzzing capabilities, encoder & decoders

Taught partner agency IT staff to identify & remediate vulnerabilities via POA&M, provide cybersecurity guidance as appropriate to users and managers to maintain agency systems

Engineered and maintained over 55% of security systems and programmable logic controls issues of partners' endpoint devices to make them FISMA compliant

04/2016 to 05/2019

11/2014 to 04/2016

Information Systems Security Officer, Universal Protection LLC – Conshohocken, PA

Secured over 75% improvement in overall security posture of information systems by monitoring SIEM, IDS/IPS, DLP, SOAR, web proxies and firewalls to meet FISMA, NIST-RMF/CSF standards

Established tactical measures to increase output by over 25% through risk management and protective measures for physical security threats and access control points

Resolve over 40% of system issues by liaising with System Admin and engineers.

Handled crisis situations at mission critical spaces effectively to enhance productivity by 15% through rigorous automation and continuous monitoring

Ensured that requests for certification and accreditation of computer systems are completed in accordance with the published procedures

Maintained inventory of hardware and software within agency authorization boundary

Coordinated Contingency Plan processes, testing and maintaining contingency plans

Reviewed and updated key documents such as the CP, SSP POA&M

Monitored and reviewed daily logs, access control systems & generate reports for management.

Liaised with system owner to analyze risks & efficiently ensured the CIA of all systems

Facilitated security awareness and related training programs and distributed security awareness information to the users as appropriate

Project Manager, Northeast Corridor Integrated Development Agency

Executed $2m budget projects for 11 companies to achieve 36% hike in client’s output

Attained 15% above target by directing 15-member cross-functional business partners to launch 4 E-commerce and IT & communication centers of excellence

Reduced production time by 10% by mentoring team leaders to adopt Agile SDLC

Automated & monitored RPI/KPIs, attained 22% output rise and 30% revenue hike in 4 years.

Doubled (2-fold) clientele base through standardization & data management methods

Education

Master of Arts: International Relations and Comparative Politics

Wright State University - Dayton, OH

Master of Governance and Leadership (MBA), Ghana Institute of Management and Public Administration (GIMPA), Accra Ghana

Associate degree: Social Studies Education, Winneba, Ghana

Certifications

PMP Certified

CompTIA Security+ Certified

Certified Ethical Hacker (CEH)

Scrum Master (CSM) Certified

Master of Arts in International Relations

Master of Governance and Leadership (MBA)

Associate degree: Social Studies Education

Federal Secret Clearance Level: Secret (Active)

Contact this candidate