PETER OKYERE

Holly Springs, NC Home phone: 919-***-**** Cell: 571-***-****

adcunl@r.postjobfree.com

OBJECTIVE

Desire for an information technology compliance position in an organization in critical need to secure its operations, processes and assets

SUMMARY OF QUALIFICATION

● Ability to perform privacy, technical, operational and management security control assessments and reviews

● Ability to conduct security tests and evaluations (ST&Es) guided by NIST SP 800-53A

● Ability to create and update Security Assessment and Authorization (SA&A) documentation in line with company, industry and national standards

● Ability to generate residual risk reports in order to update the PAO&M

● Adequate knowledge of COSO, CO BIT, ISO, SSAE 16, PCI-DSS and HIPAA frameworks

EXPERIENCE

Evergreen Information Security and Technology Jan 2012 – 2018 Information Security analyst - Raleigh, NC

● Conducted kick off meetings to collect systems information and categorize systems based on NIST SP 800-60

● Conducted security control assessments to assess the adequacy of management, operational privacy, and technical security controls implemented. Security Assessment Reports (SAR) were developed detailing the results of the assessment along with Plan of Action and Milestones (POA&M).

● Developed system security plans to provide an overview of federal information system security requirements and described the controls in place or to meet those requirements.

● Created and updated the following Security Assessment and Authorization (SA&A) artifacts; FIPS 199, Security Test and Evaluations (ST&Es), Risk assessments (RAs), Threshold Analysis (PTA), Privacy Impact Analysis (PIA), E-Authentication, Contingency Plan, Plan of Action and Milestones (POAMs).

● Prepared Security Assessment and Authorization (SA&A) packages to ascertain that management, operational and technical security controls adhere to NIST SP 800-53 standards.

● Performed vulnerability assessment, making sure risks are assessed and proper, actions taken to mitigate them.

● Conduct IT controls risk assessments including reviewing organizational policies, standards and procedures and providing advice on their adequacy, accuracy and compliance with industry standards.

● Developed risk assessment reports to identify threats, vulnerabilities, and its impact associated with it.

JBT Corporation

Technician - Raleigh NC April 2018 - October 2019

● Assist with the development and ensure proper input of the maintenance data into the computerized maintenance management system.

● Perform mechanic duties including mechanical, electrical, pneumatic and hydraulic troubleshooting, and repair of conveyor and control systems.

● Respond to and correct issues that may exist within the facility, equipment, or systems. PROFESSIONAL TRAINING

• Information Assurance Awareness training, September 2013

• Anti-Phishing training, September 2013

• Webcast: Information Security and Privacy – FISMA, July 2013

• Enterprise Certification & Accreditation Training February 2012

• Information Systems Security training, June 2014

• Project Management training, American Management Association, July 2013

• FISMA Compliance Certification, FISMA D, November 2013 EDUCATION

Aviation Institute of Maintenance – Duluth, GA Aug 2008 - Jun 2010 Certification in Aviation Maintenance Technical Engineering (AMTE) Applied Career Training – Arlington, VA Oct 2003 - Jun 2004 Northern VA Community College – Alexandria, VA Aug 2000 - May 2002 Wesley High School – Kumasi, Ghana Sept 1977- May 1981 CERTIFICATIONS

● Actively working on CompTIA Security+ Certification.

● Actively working to become a Certified Authorization Professional (CAP). REFERENCE

A upon request