Information Security Officer
Resume:
Temitope h. Adetola
Bowie, MD
301-***-**** ********.*****@*****.***
PROFESSIONAL SUMMARY
Experienced Information System Security Officer with 5 years of experience conducting Security Assessment & Authorization (SA&A), using the NIST Special Publications; 800-53, 800-53A, 800-18, 800-60, 800-37, 800-137, FIPS 199 and 200 publications. Proficient in developing and updating security documents System Security Plan (SSP), Contingency Plan (CP), Incident Response (IRP), Plan of Action & Milestone (POA&M) and conducting continuous monitoring on multiple systems.
EDUCATION
B.S., Business Administration - University of Maryland Global Campus.
Moshood Abiola Polytechnic, Nigeria
CERTIFICATION
Certified Authorized Professional (CAP)
Business Analyst Fundamentals
Security Plus Certified
CASP Certified Advance Security Partitional
TECHNICAL SKILLS
Security Requirements: NIST, FISMA
Scanning Tools: Tenable Nessus
Software: Microsoft Office
Assessment Tools: Cyber Security Assessment Management (CSAM)
Network / OS: Windows Operating System, LAN, WAN, Firewall, VPN.
PROFESSIONAL EXPERIENCE
D-Vine Consulting LLC - Bowie, MD October 2014 – Present
Information System Security Officer
Categorize information system using appropriate standards and NIST guidance. Developed and update system security plan (SSP) to provide an overview of federal information systems security requirements and implementation of security controls.
Conduct Assessment and Authorization (A&A) package for General Support System and Major application using the NIST Risk Management Framework (RMF) to ensure compliance with the Federal Information Security Management Act (FISMA). Developed and maintained System Security Plan (SSP) and POA&M to obtain the authority to operate (ATO).
Maintain, review and update Information Security System documentations, includes but not limited to System Security Plan (SSP), Plan of Action & Milestone (POA&M).
Categorize information system using appropriate standards and NIST guidance.
Developed and update system security plan (SSP) in CSAM to provide an overview of federal information systems security requirements and implementation of security controls.
Maintain, review and update Information Security System documentations, includes but not limited to System Security Plan (SSP), Plan of Action & Milestone (POA&M), Contingency Plan (CP), Incident Response Plan
Perform Assessment and Authorization in compliance with FISMA/NIST Standards.
Create Plan of Action and Milestones (POA&M) in CSAM base on the review of Security Assessment Report (SAR) and vulnerability scan report to track the remediation of identified vulnerabilities to closure.
Ensure compliance with regulatory and statutory security requirements like NIST and FISMA in securing information systems.
Assigned tasks to associates, staffed projects and updated all involved parties to
enhance optimal business flow.
Reviewed files records and other documents to obtain business information and key
data informing responses to development requests.
Conducted interviews with key business users to collect information on business process
and user requirements.
Established online configuration knowledge base to support functionally by developing
robust system application overview.
Improved business direction by prioritizing customers and implementing changes based
on collected feedback.
Meet with stakeholder to establish favorable business relationships and support
mutually beneficial interest.
Assigned issues to appropriate support group for thorough support and prompt resolution.
Interacted with users to provide and process information in response to problems, inquiries, concerns and/or requests, collaborate with customers to resolve application, phone, printer, or computer problems in real time. Worked closely with clients and staffs to ensure smooth, uninterrupted operation of network client workstations, servers, and perform other assigned duties.
Contact this candidate