Sign in

Project Security

New Orleans, LA
April 22, 2020

Contact this candidate


Andrea Bercy


A resourceful Technical Project Manager managing security and audit whose skill in streamlining operations and maintaining schedules ensures maximum customer satisfaction and business revenue. Expertise in managing IT Security & Business resources to form diverse project teams to complete objectives. Direct experience managing development operations units for large, multi-vendor system integration projects in Financial Service, Healthcare, and human services bureaucracy organizations. Organized, detail-oriented and proactive with experience in Large Technology Implementations (ERP). Diverse experience includes Sales, Application Support and Security projects with Agile, Waterfall, and Iterative Methodologies and Scrum Processes.


Project Management IT Risk Management Security Crisis Response Audits IT Governance & Compliance Pandemic Planning Training Project Documentation Process Improvement Security Leadership Vendor Risk Management Budget


CISM (Certified Information Security Manager-IT) candidate

PMP Candidate (Project Management Professional) - PMI, GA Institute of Technology and GTA (GA Technology Authority)

Microsoft Certified Systems Engineer + Internet (MCSE+I) Training, University of New Orleans

ITIL Foundation Certification, Six Sigma Yellow Belt

Customer Service Certification for IT Professionals, Gwinnett Technical College

Additional Training

Information Security Responsibilities - ADP

ADP Security Management Service – Assigning User Security Roles - ADP

ADP Security Management Service for Security Masters and Security Admins- ADP

MAS Agility Training - ADP

Rally Reports and Insights – ADP

Jump Start Guide to security information and event management (SIEM) in AWS - AWS Marketplace

Agile Essentials, Value Stream – Kaiser Permanente

Harvard ManageMentor: Project Management

PMP Candidate (Project Management Professional) - PMBOK, Ga Tech and GTA (GA Technology Authority)

Business Continuity - Understanding Professional Practice One: Program Initiation and Management, Disaster Recovery Institute

Web Service API’s, SOAP, Informatica Training – iTechUs

SPLUNK, Security+, CapGemini and IBM Tivoli – GTA (GA Technology Authority)

Introduction to Scrum for Project Managers- cPrime

ITIL Foundation v3 Certification, Six Sigma Yellow Belt- Fiserv

Customer Service Certification, Gwinnett Technical College

HTML, Java, JavaScript, FrontPage, C+, Flash, Documentum, MS Project, Delta University

Linux Professional Institute Certification (LPIC): Junior Level Administration- UNIX Shell Scripting Tools Administering UNIX Network Services


Tulane University, New Orleans, LA Bachelors in progress – Concentration in Management Information Systems (130 credit hours)


DXC Technology / HP

Cyber Security Project Manager

August 2019 – present

Define project scope and project plan, including the budget and the schedule

Led team as SailPoint SME to establish pass-through authentication, logging into IdentityIQ to Active Directory.

Worked with business leaders and AD team to determine user roles and responsibilities to complete a user matrix to implement SailPoint.

Performed as SailPoint Train - the -Trainer.

Manage project team activities to deliver on agreed targets and budget.

Manage and control Cost/Time & Scope, Risk and Change

Manage expectations & client relationship. Ensure projects are effectively resourced

Deliver projects according to the quality standards agreed at by DXC and client

Monitor & report project progress, commercials and status into Programme/Portfolio Manager and stakeholders.

Communicate and coordinate project activities within the project team and ensure that priorities are developed and known.

Ensure that project milestones and targets are clearly understood within and outside the project such that the appropriate parties can marshal resources and activities to align with project delivery.

Truist Financial (Formerly BB&T and SunTrust Banks)

Security PM - Risk and Business Continuity

January 2020 – March 2020

Worked within the Crisis Management Team to manage incidents related to the current pandemic.

Drafted the enterprise Pandemic Plan including specific processes around safety related to challenges posed by the Coronavirus.

Tracked the business units’ incidents and progress towards compliance with local stay at home orders incorporating federal guidance from the CDC and the World Health Organization to ensure business continuity.


IT Project Manager (Security & Audit)

Oct 2018 – September 2019

Worked with business leads and AD team to setup identity profiles with employee data from Azure AD such as emails and entitlements.

Led teams to provide pre-built ABAP code to copy into the ECP system for integration with SAP EPO.

Used these profiles to create, manage, remove, access to company resources.

Led effort for SailPoint to import Azure AD data.

Manage security incidents through completion by hosting action planning calls in response to critical incidents, tracking the updates and communicating with leadership on the issues and resolution.

Leading teams by creating, documenting, monitoring, and auditing (SOX, and IT) security, risk and privacy for the business using risk- based decision making.

Collaborating with Deloitte and Internal Audit teams to provide on time and quality deliverables.

Drafted and refined documentation and processes for KC security controls to include job scheduling, user and privileged level database and application access, disaster recovery and business continuity, user recertification, terminations, and change management.

Familiar with Confluence and Bitbucket code repositories and help devops and scrum teams with audit requirements around change management and separation of duties.

Worked with scrum development in three-week sprint cycles for efficient and reliable release.

Creating business processes for provisioning and deprovisioning users.

Institute and manage a system that runs periodic reviews of accounts, user roles and access.

Verifying the appropriateness of roles and access to multiple systems.

Draft mitigation plans and safeguards leveraging GSO compliance standards ISO/IEC 27001

Establish and refine monitoring and review processes.

Manage audit prep by compiling documentation and communicating with Sr. IT Leadership, Internal Audit team, vendors and business partners.


IT Project Coordinator (Intermediate) – PMO

Oct 2017–Jul 2018

Manages large-scale projects from planning to completion.

Proactively monitors project risks by identifying risks and trigger events.

Provides insight to key stakeholders and project sponsors by developing project goals, setting the prioritization of deliverables, discussing involvement of business processes (e.g. project change management, communication) and facilitating decisions necessary for project delivery.

Ensures adherence to established processes and policies (SDLC including domain standards, Kaiser standards)

Develops, analyzes, and manages moderately complex project plans which include schedule, and resource forecast

Manages and monitors project financials for large projects.

Monitors overall project performance (e.g., on time, on budget, within scope and with quality) against plan and makes adjustments as needed.

Manages project activities related to change management, phase gate reviews, training plans, etc.

Drives allocation of resources, establishes schedules, and task assignments to ensure proper project management practices are in place.

Requests and manages internal and/ or external resources based on the alignment of team member skills and project demands.

Presents and promotes project vision and objectives with project team.

Delivers individual performance feedback to team members.

Proactively monitors project risks by identifying risks and trigger events.

Monitors the compliance of project plans by ensuring team members follow policies and procedures.

Ensures the alignment, buy-in, and coordination of diverse project stakeholders by building rapport with internal customers, third party vendors, and senior management.


Sr. IT Project Manager – Security & Finance

Oct 2016 – Jul 2017

Served as PM on security and financial projects with a primary focus from an enterprise-wide perspective managing IT and the Business Units from Project Kick-Off to Close Out.

Managed the implementation of security processes and controls following NIST standards.

Managed vendors (SAP, Convergint and Honeywell) through the project lifecycle on the software integration and hardware installation for Secure Desk and Indala and MultiClass security card readers for agency wide security initiative.

Lead key downstream (EPM) components of the project.

Provided project documentation to include user stories, test scripts, epic briefs, and training manuals.

Compiled financial data for the State of GA and integrating it with SAP and GIS applications as an enterprise solution.

Used requirements to drive the design and review of test cases, process change requests, and manage the project’s scope, acceptance, installation and deployment.

Independently drove the activities of the project, developed a schedule for project milestones, maintained project scope, set task deadlines, monitored staff progress, scheduled and conducted meetings as required.

Strong knowledge of a range of computing platforms and operating systems, tools, virtual technologies and associated hardware (i.e., Microsoft, Unix, Linux, AD, VMWare, Citrix XenApp)

Managed the business case, planning, change management, and monitoring of project deliverables.

Worked with the Analysts to elicit requirements from the business and work with IT team to translate to technical diagrams and simplified user’s stories, story boards, etc.

Provided continues process improvement and instruction to project team and stakeholders.

Managed vendor’s tasks and communication to produce quality and on time deliverables.

Facilitated daily Scrum Meetings.

Developed and communicated project status, to include MS PowerPoint presentations, Project Management Dashboard reports and weekly status reports.

Proactively drove the resolution of outstanding issues and project variances.


IT Project Manager – Security Compliance & Audit / Infrastructure

May 2014–Jan 2016

Post Security audit, collaborated with vendor (Compliance Point) and Cyber Security Managers to document Security Groups, User Access and Roles, Identity Management; Proficient in Active Directory and eDirectory, CapGemini to mitigate HIGH and MEDIUM level findings.

Managed team administering Windows network domain(s) – Domain Controllers, Active Directory, DHCP scopes, DNS, Group Policy Objects, and Certificates.

As SailPoint Lead, wrote mitigations around active directory integration with SailPoint implementation.

Drove the documentation effort for all security controls and processes working with agency CISOs and/or security focals.

Responsible for the documentation and maintenance of the POA&M (Plan of Action and Milestones) to mitigate HIGH findings resulting for the third-party security audit.

Managed the development of the System Security Plan (SSP) by working with vendors, business partners, IT resources and agency CISO’s and teams to compile necessary data for submission to CMS for Authority to Connect (ATC) to the Federal Data Hub.

A federal requirement, the documented mitigation for the findings were imperative to maintain our ability to access funds.

This effort was a success as HIGH findings dropped from 35% down to 8%.

Reviewed and elaborated the RFP while performing contract administration.

Facilitated project kickoff meetings, communicating individual roles and project expectations.

Managed vendor (Deloitte) and state infrastructure teams to establish the Security Matrix, the Continuity and Disaster Recovery Plans to ensure solutions meet business goals.

Initiated and led the Security Governance Council and Security Steering Committee meetings and initiatives to ensure system compliance based on NIST, HIPAA security procedures related to Protected Health Information (PHI), Personally Identifiable Information (PII) and financial information.

Led the Security Governance Council and Security Steering Committee meetings and initiatives to ensure system compliance based on NIST and InfoSec.

Demonstrated a solid understanding of Governance, Risk & Compliance as it relates to Identity Management.

Led application support for identity management and security. Coordinated resources to manage system support tools to include McAfee, SPLUNK, SailPoint, AppScan, HP Fortify, etc.; led training effort for DCH users.

Managed vendors to include: AT&T Whole and Retail, IBM, IVR (Help Desk), CapGemini, Remedy, Deloitte, Maximus and state SMEs (subject matter experts) and facilitated gathering of requirements for the new IVR system for IES.

Facilitated meetings with SSA, IRS, CMS and state business owners/stakeholders to complete architectural review documentation to obtain approval for the IES (Integrated Eligibility System) to go-live.

State liaison with the IRS, SSA and CMS for the IES project in regard to security requirements and compliance.

PM Lead and Resource Manager for the Security, IVR, and PeachCare project tracks; maintained executive-level reporting, project schedule and tracked project tasks with PMC, DOORS, HP-PPM, MS Project and SharePoint 2007.

Compiled and trained PMO on Contract Request procedures and other legal processes while working with state attorneys and agency legal teams to ensure compliance.

Managed and provided project management consultation for the Security Compliance and Service Center aspects of the 300M+ budget project through the software development life cycle.

Trained and mentored junior PM’s on PMO procedures and vendor expectations.

Ensured and contributed to timely deliverables review and milestones and project updates for all security related items.

Lead PM for the Medicaid Service Center business unit to include PeachCare, Planning for Healthy Babies and Maximus.

Worked closely with project stakeholders, vendor, business analysts, and subject matter experts on the various system support teams.

Helped DCH and DHS-OIT with planning, scope management, risk management, communications, change control, and performance measurement and tracking.

Monitored project milestones and critical dates to identify potential delays of project schedule and identify ways to resolve schedule issues and reports to state management project status and pertinent issues.

Demonstrated project schedule analytics; resource reports, resource contentions, progress reporting, schedule data mining, etc.

Experience with PPM (Project Portfolio Management) and PM tools to include: MS Project, PMC, Doors, GEM, Rational, CapGemini and SharePoint


Technical Analyst/Application Support

Aug 2013–Apr 2014

Worked with the IT Director to coordinate all IT deployments and job scheduling with oversight for vendor and consultant management for 1400 bank branches that include inventory of over 60,000 pieces of equipment.

Managed Help Desk during system installations.

Coordinated internal IT Security projects ensuring that implementations are ready as required by client deadlines.

Trained banking staff on software applications; provided application support, proven ability to resolve complex problems, quickly diagnosing and identifying issues and determining the proper resolutions.

Worked with project team to accurately scope project and develop project statements of work.

Utilized Microsoft Project to plan project initiatives, communicate goals and provide continual updates on progress.

Analyzed, prepared and documented operational procedures and technical guidelines and provided user security training.

Planned, developed and deployed change management initiatives for technical implementation including productivity software, systems, technical application and hardware release.


Technical Analyst/CTAC Call Center Lead

Sep 2010–May 2013

Led Active Remittance team through application support, software testing, implementations, and staff training.

Took tier 3 trouble calls from customer’s regards technical and security issues to include user access and permissions; logged and resolved issues in Remedy ticketing system.

Facilitated bridge calls with banking customers until resolution was met.

Trained users and performed application support, configured software to meet customer expectations

Maintained Remedy ticketing and Active Directory database.

Utilized strong analytical skills with attention to detail to resolve problems on the first call.

Excellent documentation, organization, time management, and problem-solving skills.

Ability to build consensus within a technical and the business community and to work through others in achieving desired results and objectives.

Strong problem-solving skills; able to anticipate technical and project barriers and adjust approach based on research and experience.

Demonstrated ability to customize communication strategy to a given client audience.


Project Coordinator – Security Administrator

Oct 2008–Jun 2010

Security administration in providing user access, modifying privileges, 2nd tier support to large and small banking customers; included Bank of America, SunTrust, Fifth Third Bank, Walmart Green dot.

Trained and coached technical and staff level analysts within the CTAC department call center; assisted in establishing end user software training.

Prepared weekly and monthly metrics reports using Remedy Analytics.

Served as a floor/team leader for Client Technical Assistance Center.

Responsible for gathering and documenting requirements, analysis, process & data flows, test plans, testing, coordinating tasks.

Interacted with users, other portfolios, and vendors, for full life cycle of project

Troubleshot, coordinated, and maintained production systems/programs/applications, as needed.

Trained users and assisted in maintenance and communication of project status reports and tracking.

Served as Junior Project Manager for team; tracking and reporting metrics, SOP’s, scheduling. Consulted with internal and external customers.

Produced scheduled and ad hoc reports as necessary using Remedy Analytics.

Responsible for ensuring efficient operations and adherence to ITIL best practices within Client Technical Assistance Center/Command Center.

Performed problem resolution on trouble tickets with assistance from other team members and management.

Tracked and supported a database of service requests.

Acted as liaison between banking customers & Fiserv/CheckFree UNIX developers/engineering teams

Provided support and training for SAP, WebLogic, Tomcat, Apache, IIS, Flash, Remedy, PeopleSoft, Web Image Retrieval, and Active Directory.

Modified IT Service processes based on business goals & needs following merger with Fiserv Corp.

Served as a resource for various internal projects, and assisted with staffing, scheduling, and training new associates.

Performed product testing and administering security ID processes for internal and external clients.

Strategically staffed, interviewed, and on occasion, assisted in the selection process of hiring new employees; ensured adequate coverage for shifts.

Responsible for updating departmental databases that are used in our day-to-day functions; knowledge base and SOP’s.

Expert level skills in MS Word, Excel, Outlook, PowerPoint, Access and WindowsNT.

Ensured that all Remedy/CIRT tickets are properly created, handled, and escalated, while serving as an escalation point of contact for our clients and executives.

Excellent customer service skills, knowledge of lotus notes, internet navigation skills for problem diagnostics.

Experienced with ticket tracking systems and using a paging system; assisted in administration and troubleshooting of Cisco and Foundry.


Project Coordinator/Trainer

Jan 2008–Oct 2008

Assisted in maintenance and communication of project status reports and tracking.

Trained personnel in the apprenticeship position and in job placement; produced scheduled and ad hoc reports as necessary.

Troubleshot and repaired PC’s, laptops and peripherals.

Analyzed, designed, tested, and evaluated network systems, such as local area networks (LAN), wide area networks (WAN), Internet, intranet, and other data communications systems.

Performed network modeling, analysis, and planning.

Researched and recommended network and data communications hardware and software.

Interacted with telecommunications specialists who deal with the interfacing of computer and communications equipment.

Developed training schedules and conduct software training for clients.

Trained clients in programming in SQL, UNIX, and C; expert in wireless connectivity.

Maintained client and knowledge base databases.


Project Lead / Technical Analyst

Sep 2007–Jan 2008

Trained staff on proper procedures; created and maintained an active inventory database and provided daily status reports to management.

Performed data entry & analysis, report reconciliation; held team member accountable re: deadlines.

Verified installed software and hardware equipment.


Network Administrator

Jan 2006–Sep 2007

Staff software training and support

Network and desktop support

Staff software training and support

Database Design and Management; Web Development

Facilitated and managed dispatch of resources and equipment


Director Commercial Sales/Technical Consultant

Dec 2004–Mar 2006

Commercial and residential sales

Sales training to new agents

Software training, implementation and support

Planned and implemented company network and website.

Maintained daily operations of Windows 2000 client and server computer systems and trained staff.

Software training, implementation and support



Feb 2002–Dec 2004

Used technical skills to market and sell commercial and residential properties.

Million Dollar Club Member

Property Management; Commercial, residential, multifamily and condos

Provided software application support and instruction to staff


Technical Analyst, System Support

Nov 2000–Feb 2002

Collaborated with Delta Technologies (DT) engineering team in server migration; Windows 2000 Server and Exchange 2000 Server; trained in system administration

Provided software upgrades, hardware installation, tech support and training.

Developed Access database for in-flight department.

Supported industry Software: Monitored processes and performed troubleshooting; and assisted users with concerns and provided training.

Acted as liaison between users and DT staff.

Worked with Ceridian Software team in implementing new Human Resources software system.

Trained staff on Ceridian software and assisted with issues

Utilized FrontPage & Documentum to create forms/reports and published them on the intranet site.

Expert in Remedy software: Generated field service requests (FSR's); assisted in design and management of FSR database.

Web Developer-AAEN Intranet site

Database Administrator, Information Technology

Reported to the Vice President of Maintenance Operations.

Trained ASA users on Delta Technology processes and software applications.

Administered DASH software on HP 3000/MPE OS.

Maintained database by monitoring and adjusting capacities, setting up new users, and running daily maintenance reports, assigned permissions to Maintenance personnel.

Trained in SAP and was involved in SAP migration from DASH software.

Wrote the knowledge base for DASH software – Publishing software application for aircraft maintenance documentation.

Performed troubleshooting.

Kept tape library and archiving database.

Performed daily system backup. Responsible for off-site vault storage.

Volunteered for the AAEN organization as a web developer and Habitat for Humanity.


Information Technology Intern – Support

Jan 2000–Nov 2000

Performed NT and Novell server support and troubleshooting: debugging.

Analyzed client startup traffic using TCP/IP and document the impact of DHCP and WINS services on network traffic.

Monitored the processor, system, system queues, and process objects and their counters to develop a baseline for analyzing processor performance.

Conducted site surveys for LAN wiring.

Processed WAN and LAN drawings using VISIO software.

Performed hub maintenance and port configuration.

Installed software, configured and supported Windows NT, NetWare, GroupWise, Microsoft Office 2000, ‘97, Windows 2000, ’98.

Peripherals maintenance, (Epson, Hewlett-Packard, Q Systems, Gateways, etc.)

Provided desktop support for 75 users on a WAN of 2500 computers: NT, ’95,’98, GroupWise, Exchange, Netscape, Internet Explorer, Microsoft Office 2000, ’97.

Software testing: Mercury Test Director 5.0, RIMS (HM) ADSW, RIMS(OM), RIMS(HM)FM. Static entry of IP addresses when DHCP server went down.

Knowledge of proxy servers and firewalls; familiarity with Point-to-Point Protocol (PPP) and File Transfer Protocol (FTP).


Women in Technology

Technology Association of Georgia

Project Management Institute


Girls Who Code

Contact this candidate