Security Analyst Cyber
Resume:
Chigozie Samuel Mbagwu
Dale City,VA *****. *************@*****.***
Phone:571-***-****
Professional Summary
Results-driven cybersecurity professional with 6+ years of experience in third-party risk management and supplier security assessments. Proven expertise in conducting comprehensive security risk assessments, identifying gaps, tracking remediation, and ensuring compliance with frameworks such as ISO 27001, SOC 2, NIST, GDPR, HIPAA, and CCPA. Skilled at collaborating with cross-functional teams (Procurement, Legal, IT Security) to mitigate vendor risks and strengthen the Supplier Information Security Program.
Developed and Updated policies as needed to align with industry standards and frameworks.
Participated in audits by serving as an audit escort and point of contact.
Managed audit requests, tracking evidence submissions, facilitating communication between auditors and internal teams, and ensuring responses remain within scope
Reviewed documentation to confirm it is current, approved, and aligned with the relevant ISO 27001 control during Audit.
Professional Experience
Compliance & Risk Analyst
INFINERA
March 2024 – March 2026
Conducted comprehensive security risk assessments of 150+ third-party suppliers, including thorough review of security questionnaires, ISO 27001 and SOC 2 certifications, and supporting documentation.
Collaborated with internal stakeholders in Procurement, Legal, and IT Security to align supplier engagements with organizational security and compliance requirements, reducing high-risk vendor onboarding issues by 40%.
Identified and documented security gaps across vendor environments, assessed risk levels using standardized methodologies, and recommended targeted remediation actions that improved overall supplier security posture.
Tracked and followed up on remediation plans and risk mitigation efforts with suppliers, achieving 95% on-time closure rate for identified findings.
Maintained accurate and up-to-date records of supplier assessments and risk ratings in compliance tracking systems ( ServiceNow, Archer).
Supported the development and continuous improvement of the Supplier Information Security Program, including creation of policies, procedures, and assessment tools.
Stayed current with evolving regulatory requirements (GDPR, HIPAA, CCPA) and industry standards (NIST, ISO, CIS), providing guidance that ensured ongoing organizational compliance.
Assisted in preparing reports and metrics for leadership and audit purposes, contributing to successful internal and external audits with zero major findings related to third-party risk.
Cybersecurity Analyst
Commonspirit Health, Los Angeles,CA
March 2020 – March 2024
Performed vendor due diligence and security reviews for cloud and hosted service providers, focusing on data protection and access control.
Analyzed security documentation and evidence from third parties to evaluate compliance with company standards and regulatory obligations.
Worked with cross-functional teams to develop risk mitigation strategies and monitor ongoing vendor performance.
Contributed to the maintenance of risk registers and reporting dashboards for senior leadership.
IT Compliance Specialist
Tech Innovations Inc., Manassas, VA
August 2019– December 2020
Supported security and compliance initiatives, including review of third-party contracts and controls.
Assisted in internal audits and documentation of risk assessment processes.
Skills
Risk Assessment & Management: Third-Party Risk Assessments, Vendor Security Questionnaires (SIG), Risk Rating & Scoring, Remediation Tracking
Frameworks & Standards: ISO 27001, SOC 2 (Type 1 & 2), NIST Cybersecurity Framework, GDPR, HIPAA, CCPA, CIS Controls
Tools & Systems: ServiceNow, Archer, RSA Archer, Excel/Power BI (for metrics & reporting), GRC platforms
Soft Skills: Cross-Functional Collaboration, Stakeholder Management, Report Writing, Regulatory Compliance Monitoring
Policy & Procedure Development, Audit Support, Continuous Improvement of Security Programs
Education
Federal University Of Technology,Owerri,Imo, Nigeria
Graduated: October 2010
Contact this candidate