Information Security Cyber

Paul Achidi Abanda

***********@*****.*** 240-***-**** Fredericksburg, VA

SUMMARY

Seasoned Cybersecurity Analyst with 28 years of experience in IT security and risk management, seeking to leverage extensive background in cyber threat mitigation and ISO/IEC 27001 compliance. Skilled in conducting security audits, incident response, and developing security governance frameworks. Proven track record in enhancing organizational security postures and advocating for best practice information security management. WORK EXPERIENCE

Onyx Management Solution/BAYSAL Technologies

Cyber Security Consultant May 2022 - Present

• Provide guidance for the establishment and continuous improvement of information security management systems compliant with ISO/IEC 27001 standards.

• Consult on the review and enhancement of organizational information security to ensure reliability and service value.

• Assist organizations in understanding and applying practical approaches for protecting data through risk management processes, ensuring confidentiality, integrity, and availability of information.

• Advocate for ongoing optimization of management systems and operational procedures in alignment with information security management best practices. NAVEG Technologies

IT Security Manager Cyber Security Analyst Feb 2015 - Present During my time as the IT Security Manager and Cyber Security Analyst at NAVEG Technologies, I implemented and maintained security systems to safeguard computer networks against cyber threats, ensuring compliance with industry standards. I also investigated cyber security incidents and collaborated with the security team to enhance incident response strategies. My continuous learning about IT security trends and advocacy for best practices and security enhancements organization-wide make me a valuable asset to any Cyber Security department. Provide technical security support to various teams, informing on security features, risks, and integration, and contributing to Information Security Governance policy development. DAMELIN Education Group, National Academics

Head of Faculty of Science and Technology Mar 2009 - Apr 2020

• Managed the integration of work-based learning into departmental programs, enhancing practical application of theoretical knowledge.

• Developed and coordinated national assessments, ensuring consistency and fairness in both internal and external evaluation processes.

• Directed institutional planning and resource allocation, optimizing governance and academic resources.

• Conducted stakeholder surveys to assess and maintain high standards of educational provision, resulting in continuous improvement initiatives.

• Maintained academic integrity and regulatory compliance across all programs and assessments, aligning with external authority policies and institutional quality management systems. ABZONG Training and Consulting Mar 2009 - Dec 2015 Part Time Consultant in Training Development and Information Security Consulting Manager/It Risk Analyst and Security Awareness

• Managed quality control for systems engineering and project management, utilizing Agile and Scrum methodologies to enhance information security management.

• Conducted comprehensive penetration testing and attack simulations across networks, applications, and infrastructure to identify and address security vulnerabilities.

• Delivered targeted information security awareness training and conducted social engineering assessments to strengthen organizational security postures.

• Assisted in the development and implementation of security governance frameworks, including policy creation and security architecture design, to bolster client cybersecurity defenses. Xtensive ICT Academy

ICT Centre Training Manager & Network Administrator Jun 2006 - Feb 2009

• Managed the implementation and coordination of skill development projects, ensuring compliance with MICT SETA standards and successful rollout.

• Maintained quality assurance across various training initiatives to enhance program effectiveness and meet project objectives.

EDUCATION

University of London Postgraduate Certificate in Cyber Security (Current) 2024 Institute of Chartered IT Professionals (ICITP) – SA) IT Security Specialist May 18 2021 University of Pretoria BSc Hon in Technology Management 2016 Vocational College of Arts Science and Technology, Muyuka Advanced Technician Diploma 4 in Telecommunication & Electronics Engineering 1993 Cameroon Technical College, Nkwen Bamenda Technician Certificate in Telecom 1990 CERTIFICATIONS

Security Principles, ISC2 2024

Foundation of Cybersecurity, Google 2024

Quality Improvement in Healthcare Organizations, Rutgers State University of New Jersey

2023

AWS Cloud Practitioner Essentials, Amazon Web Service 2022 Penetration Testing, Incident Response and Forensics, IBM Cybersecurity Analyst Ongoing 2023 Certificate in AWS Fundamentals: Addressing Security Risk, Amazon Web Service 2021 Certificate in Google Cloud Platform Fundamentals: Core Infrastructure, 2020 Certificate in Cyber Attack Countermeasures, New York University 2020 Certificate in Introduction to Cybersecurity Tools & Cyber Attacks, IBM 2020 Certified Network Security Specialist (CNSS), International Cybersecurity Institute (ICSI) UK

2020

Certificate in AWS Fundamentals: Going Cloud-Native, Amazon Web Services 2019 Certificate in Agile with Atlassian Jira, Atlassian 2019 Certificate in Software Architecture for the Internet of Things (SAIOT), EIT Digital (European Institute of Innovation & Technology) Certificate in Information Security: Context and Introduction, University of London

2018

Certified COBIT5 Foundation Certificate, AMPG International 2018 Certified ISO-IEC 27001 Foundation Certificate, Torque IT 2018 Certified Ethical Hackers (CEH), EC-Council 2012

Certified Information Security Professional (CISSP), ICS2 (in progress) 2024 Certificate in Leadership and Management Development, EDUCOR 2018 Certificate in Ethical Hacking and Computer Forensic Security PAN African Training 2018 Certificate in Advanced IT Risk, Security Management and Cybercrime prevention 2018 SKILLS

IT Security Governance • NIST • COBIT5 (IT Governance) • ISO-IEC 27001 (Compliance) IT Security Management Auditing • POPI Act Training Awareness • Security Management • Project Management • Risk Management • Cybersecurity Analysis and Computer Forensics Investigation • Agile • IT Security Systems & IS Auditing Processes to Conformity • Information Security Controls • Business Analysis • Training and Facilitation • Telecommunication and Electronics Engineering • Network Technology and PC Technologies • Information Security Policies and Procedures Designs • Information Security Compliance Management • Scrum • Google Cloud Security • AWS Going Cloud-Native • Computer Forensic Investigation in Principles in Information Security • SDLC

Contact this candidate