Nelson Frimpong

Alexandria, VA ***** adny59@r.postjobfree.com 571-***-****

PROFESSIONAL SUMMARY

Information Security professional with 3 years of progressive experience in Information Security focusing on managing and protecting enterprise information systems, network and operational processes. Highly organized with proven ability to coordinate complex workflow and logistics within client-facing environments. Outstanding communicator and relationship-builder known for going above and beyond to ensure best possible outcomes in service and satisfaction.

Core Competencies:

Risk Assessment & Management Security Assessment & Authorization Strategic Planning Excellent Communication Skills

Innovative Outcome-Orientated Leadership Operations Management Authorization to operate (ATO) Packages Database Management Attention to Detail Critical Thinker Problem Solver PROFESSIONAL EXPERIENCE

INFORMATION SECURITY ANALYST Advanced Technology Int- Summerville (SC) 2020 – Present Designed and implemented security systems to protect company's computer networks from cyber-attacks and helped set and maintain security standards. Monitored computer networks for security issues, installed security software, and documented security issues/breaches.

Conducted Security Control Assessment (SCA); developed Plan of Action and Milestones (POA&M) procedures and recorded findings in system security plan (SSP).

Scrutinized current plans, policies, and procedures; restructured to meet NIST 800 guidelines and agency's security requirements.

Directed risk assessments and collaborated with clients to provide recommendations regarding critical infrastructure, network security operations, and continuous monitoring processes; mitigated risk.

Worked with System Administrators to resolve post-authorization; evaluated threats and vulnerabilities through Nessus scan and incorporated successful mitigation plans.

Created and updated Authorization to Operate (ATO) packages such as SSPs, SAR and POA&Ms; ensured compliance.

Facilitated ST&E Kick-off Meeting and filled-in Requirements Traceability Matrix (RTM) according to NIST SP 800-53A; passed operating testing parameters.

Monitored controls post authorization to ensure continuous compliance with the agency and system security requirements.

CYBERSECURITY ENGINEER Parsons – North Charleston (SC) 2018 – 2020 Key player in helping businesses protect computer and networking systems from potential hackers and cyber-attacks. Safeguarded sensitive data from hackers and cyber-criminals who often create new ways to infiltrate sensitive databases.

Nelson Frimpong

Protected the organization's data and infrastructure by enabling appropriate security controls and conducted routine risk assessments that included full-system scans using Nessus.

Completed administrative tasks, authored reports and sensitive security documents, and assessed activities; collaborated with cross-functional departments to evaluate and mitigate risks and incorporated corrective actions on deficiencies to maintain systems.

Tested and identified network and system vulnerabilities; briefed stakeholders and clients on security-related issues and resolution strategies.

Charged with contributing vital information to Certification and Accreditation Team; assessed and eliminated risks and updated System Security Plan (SSP), Contingency Plan (CP), and Plan of Actions and Milestones

(POA&M) to align with company goals.

Complied with security authorizations using NIST SP 800-60 and FIPS 199, monitored Privacy Threshold Analysis (PTA), and conformed E-authentication with system stakeholders; safeguarded resources and company assets.

Evolved IT systems security and aligned services with NIST and FISMA guidelines; improved operations. TRAINING & CERTIFICATIONS

Certifications: Scrum Master (CSM) CompTIA Security+ (S+) Defense Distribution Management Lean Six Sigma Green Belt Lean Six Sigma Black Belt Cyber-Security Skills/Systems: PO&AM Management Tool Vulnerability Assessment Tool Authorization-To- Operate (ATO) Process System Security Documentation Systems Development Life Cycle Windows Operating Systems NIST 800 SPs & FIPS 199 & 200 Nessus & Penetration Test FISMA Reports FedRAMP.