Security Analyst It Auditor

Full Name

Aurora, Colorado [Phone number] [Email address] [URL]

Organized and detail-oriented Senior Information Technology (IT) Auditor with 6+ years of experience in end-to-end security and compliance auditing. Experienced Network Engineer and Security Analyst with excellent written and verbal communication skills.

Professional Experience

Zivaro, Inc Denver, Colorado

Senior IT Auditor February 2019 - Present

●Maintain operational effectiveness by supporting the evaluation, analysis, remediation, and enhancement of regulatory controls and compliance requirements

●Perform audits using compliance software tools and frameworks to evaluate the reliability of internal regulatory controls and processes

●Develop and implement corrective action plans to mitigate security risks and attain compliance

●Track corrective action plans to monitor the effectiveness of implemented procedures and controls

●Generate reports and create other supporting documents for the audit and remediation process

●Conduct security assessments by collaborating with external auditors to identify, prioritize, and develop strategic plans to correct security vulnerabilities

Amazon.com Services LLC Aurora, Colorado

Information Security Analyst June 2019 - October 2021

●Performed security audit reviews and risk assessments to ensure compliance with National Institute of Standards and Technology (NIST) SP 800-30

●Supported security programs for customers by adhering to the Federal Information Security Modernization Act (FISMA) outlined in the National Institute of Standards and Technology (NIST)

●Identified expectations and timelines by completing the System Security Plan (SSP), Plan of Action Milestones, and Security Assessment Report (SAR) to maintain compliance and minimize risks

●Monitored vulnerabilities by using tools such as Logrhythm and Tripwire to generate analysis reports

Saint Joseph Hospital Denver, Colorado

SOC Security Analyst July 2016 - May 2019

●Developed company-wide best practices and protocol expectations to mitigate security risks

●Maintained virus protection by monitoring antivirus reports and updating as needed

●Deployed and managed Palo Alto Firewalls, Cisco ASA Firewalls, Juniper SSG Firewalls, Check Point Firewalls, and Juniper Firewalls to act as an intermediary between the network and outside traffic

●Maintained a secure network by monitoring reports from the Intrusion Detection System (IDS) to address suspicious activities as they were detected

Saint Joseph Hospital Denver, Colorado

Information Technology (IT) Technician March 2010 - July 2016

●Monitored local area network (LAN), wide area network (WAN), and Data Center Network Infrastructure

●Responded to and prioritized network system alerts to avoid downtime and minimize impact

●Ensured network optimization to maintain, improve, and maximize network performance

Core Competencies

Attention to Detail, Problem Solving, Multitasking, Analytical Thinking, Motivated, Driven, Planning and Engagement, Project Management, Goal Focused, Collaborative, Data-Driven

Technical Skills

SOC 2 Auditing Software, California Consumer Privacy Act Compliance Framework (CCPA), General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act of 1996 (HIPAA), Federal Information System Controls Audit Manual (FISCAM), Wireshark Network Protocol Analyzer, TeamViewer Remote Desktop Software, PCI DSS Compliance Framework, ISO 27001 Compliance Platform, Windows Remote Desktop

Education/Certifications

Associate of Applied Science in Computer Information Systems, Community College of Aurora, 2019

Certified Cisco Network Associate Certification, Cisco Networks

CompTIA Security Plus Certification, CompTIA

Computer Networks Plus Certification, Pickens Technical College

Contact this candidate