Security Analyst Cyber

Chigozie Mbagwu

Cyber Security Analyst

571-***-**** *************@*****.*** Woodbridge, United States 22193

SUMMARY

Goal-oriented IT professional with significant success in planning, analyzing and implementing of security plans and initiatives. Excel in developing comprehensive, secure network designs and systems. Results-focused cyber security professional with strength in vulnerability and risk management. Proactive leader with strengths in communication and collaboration. Adept at managing concurrent objectives to promote efficiency and influence positive outcomes. Motivated professional offering a Bachelors. Adds value to any organization in need of great collaboration, interpersonal, and multitasking abilities. Meets tight deadlines every time.

SKILLS

Tenable Nessus

Risk mitigation

Windows Server

Leadership

Microsoft Office

Risk Management Framework (RMF)

ISO 27001/2

PCI DSS

SOC 1/2

NIST SP 800 series

Risk Analysis

Plan of Action & Milestone (POA&M)

System Security Plan

Gap Analysis

Incident Response

Vulnerability management

Snort/Splunk

ServiceNow (SNOW)

EXPERIENCE

Cyber Security Analyst, Aspinwood Consulting, August 2019-Current

Vulnerability assessment and management using Nessus

Map vulnerability assessment results to asset inventory and asset groups.

Maintain vulnerabilities metric and remediation via Excel spreadsheet

Analyzed system risk to identify and implement appropriate security countermeasures.

Audited networks and security systems to identify vulnerabilities.

Worked successfully with diverse group of coworkers to accomplish goals and address issues related to our products and services.

Worked closely with team members to deliver project requirements, develop solutions and meet deadlines.

Prioritized and organized tasks to efficiently accomplish service goals.

Assist with internal and external audits

Assist in analyzing Security System Policies and Procedures, Hardware and Software documentation, and Security baselines in accordance with NIST, FISMA, and industry best security practice

Reference the National Institute of Standards and Technology (NIST) 800-53 Rev 5, for guidance and policies to perform security control selection and assessment

Review, analyze and update security plans (SSP) using NIST SP 800-18 guidelines

Review POAM and enforce timely remediation of audit issues

Collaborate with Assessment and Authorization (A&A) team members and senior representatives to establish and define programs, resources, schedules, and risks.

Information Systems Security Officer, Miracorp, August 2016-July 2019

Evaluated vulnerability alerts from third-party sources to analyze potential impact to company, identify appropriate stakeholders and communicate threat level of exposure.

Changed passwords, permissions and user and group accounts.

Created and updated internal information security compliance policies, procedures and standards.

Analyzed security procedure violations and developed plans to prevent recurrence.

Designed, implemented and maintained security systems and controls.

Analyzed system risk to identify and implement appropriate security countermeasures.

Made recommendations to improve security procedures and systems.

Assisted with Risk Management guidance, support, and while supervised of subtasks to ISSO's

Ensured policies and guidelines as outlined within NIST SP 800-53

Participated in risk assessments to periodically re-evaluate sensitivity of the system, risks, and mitigation strategies

With direct supervision initiated, tracked and managed the creation, opening and closure of weaknesses via Plan of Action and Milestone (POAM) processes and procedures

EDUCATION AND TRAINING

Bachelor of Science

Federal University of Technology

CERTIFICATIONS

CompTIA Security+

CISA-Pending

CISM-TBD

Contact this candidate