Cyril Okojie, sec+, ceh
Ellicott, MD 443-***-**** ************@*****.*** linkedin.com/in/cyril-okojie-11946414b/
Information System Security Officer (ISSO)
Detail-oriented Information System Security Officer (ISSO) with 5+ years of experience designing and implementing risk management initiatives, information security objectives, and internal security controls that maximize productivity and ensure 100% compliance with security policies. Solid understanding of Federal security regulations, policies, guidelines and procedures including NIST policies and documents, NIST Risk Management Framework (RMF), Federal Information Processing Standards (FIPS) and FISMA requirements. Exceptional written and oral communication skills with the ability to prepare and review documentation including System Security Plans (SSPs) and Risk Assessment Reports. Adept at building and maintaining relationships with internal/external customers and teams to support Plan of Action and Milestones (POA&Ms) remediation and Assessment and Authorization (A&A) efforts. Expertise in project management, network design, systems analysis, configuration management, and systems administration. Ability to obtain and hold Public Trust security clearance.
Core Competencies
• Vulnerability Assessment • IT Service Management • Network Security
• Risk Management/Assessment • IT Security Best Practices • Incident Response
• Compliance • Information Security Policies • Penetration Testing
• Data Loss Prevention • Intrusion Detection • Malware Analysis
• Project Management • Trend Analysis • Network Analysis
Technical Proficiencies
Platforms: Windows, Linux, VMWare
Tools: Nessus, MS Office Suite (Word, Excel, Visio, PowerPoint, MS Project), MS SharePoint, ITIL v3, Wireshark, Splunk
Development Languages: Visual Basic, PowerShell
Professional Experience
Reliable Tech Service – Baltimore, MD 2018 – Present
CyberSecurity Analyst
Prepare and review documentation to complete System Security Plans (SSPs), Security Assessment (SA) Reports/Packages, Assessment and Authorization (A&A) packages, RP, Contingency Plan (CP), Contingency Plan Test (CPT), Privacy Impact Assessment (PIA), Privacy Threshold Analysis (PTA), etc. Manage a team of 5 security personnel to coordinate SA actions and system testing. Review vulnerabilities, architecture, and defense strategies. Identify potential risks associated with system configurations and advise on mitigation strategies.
Key Accomplishments:
•Successfully analyzed 180 security questionnaire responses and completed appropriate documentation in compliance with NIST 800-53,
•Perform and document Information Assurance (IA) Control compliance assessments.
•Initiate and review artifacts in compliance with NIST RMF process.
•Develop security event remediation, recovery, and strategies in compliance with ITIL and NIST standards.
•Support and assist third-party /government during all phases of system lifecycle including the A&A process and develop a SSP.
•Ensure all Information Systems (IS) are certified and accredited in compliance with security requirements per NIST RMF.
•Confirm system documentation reflects current system security configurations including hardware/software components, data flow, protocols, etc.; provide recommendations and status reports to key stakeholders.
COK Group, LLC – Baltimore, MD 2015 – 2018
CyberSecurity Analyst
Managed a staff of 5 Help Desk and Network Administration personnel to configure, administer, and troubleshoot hardware and software issues (Unix, Linux, Windows, iOS, Android). Performed competitive analyses and maintained knowledge of emerging technologies. Developed technical solutions and enhanced network security to protect client data against cyber-attacks.
Key Accomplishments:
•Developed and conducted ST&Es (Security Test and Evaluation) according to NIST SP 800-53A and performed on-site security testing using vulnerability scanning tools such as Nessus.
•Assisted in establishing an Ongoing Authorization (OA) program design to review the security posture of designated systems on a continual basis.
Education
Bachelor of Science – Computer & Network Security 2020
University of Maryland Global Campus (aka University of Maryland University College) - Adelphi, MD
Certification
Certified Ethical Hacker/EC Council 2019
Security+/(ISC) 2000