Post Job Free
Sign in

Risk Analyst Information Security

Location:
Pittsburg, CA
Posted:
October 06, 2022

Contact this candidate

Resume:

Chimamkpa Nwosu

Tel: 925-***-**** Email: ********@*****.***

Objective

A detail oriented individual offering 5 years’ experience in Third Party Risk Management and currently seeking a Vendor Risk/Third Party Analyst position in a growth-oriented organization with focus on Internal Controls, FISMA, Risk Assessments, Audit Engagements, testing information technology controls and developing security policies, procedures, guidelines and more.

Key Qualifications

PCI DSS and HIPAA.

PCI AOC

ISO 27001/ISO 27002

GDPR, Privacy assessment (PTA, PII

Review of SOC Report

Experience in Fed Ramp

Network Security

Third-Party Risk Management

Risk Assessment

NIST SP 800-60

NIST 800-53

NIST CSF

Risk & Access Management

Vulnerability Management.

Ability to Develop and update the Plan of Action & Milestone (POA&M)

Work Experience

Third Party Risk Analyst March, 2019 – Present

Eljay IT Consult

Analyze the vendor risk management program and applicable regulatory requirements to recommend, and implement improvements.

Periodically review vendor risk management policies and procedures to ensure they align with the current process.

Review vendor completed information security questionnaire together with all provided evidence to determine vendor control effectiveness.

Respond to incoming requests for vendor assessment submitted by business owners.

Manage VRM lifecycle within the vendor risk management platform.

Coordinate with legal and compliance functions to ensure proper implementation of data privacy legislation and disclosure.

Manage tracking of identified findings and actions to closure and reporting to leadership.

Support continuous monitoring processes to assess compliance with information security policies and standards, legal and regulatory compliance

Serve as a liaison for the security team with auditors, both internal and external, to maintain and implement controls for compliance and privacy laws.

Conducts regular system security evaluations, risk assessments, audits, and reviews.

Perform analysis and produce reports with vendor metrics program.

Comprehensive documentation of the identified gaps and related risks from the business perspective.

Plant A Smile Foundation September, 2017 – March, 2019

Help Desk Support

Supported new Technicians to catch up with the speed of the team.

Escalated more complex issues to subject matter experts for assistance.

Setting up and configuring workstations for new employees including installation of required software and server permissions.

Participated in training end users (New employees) on the use of customized applications during the onboarding process.

Diagnosed and resolves problems in response to customer-reported technical issues.

Assist with common Outlook errors that involve calendars, mailbox permissions, PST files import/export, and publishing certs.

Troubleshoot and resolve common hardware and network issues including video cards.

Desktop/laptop issues, cabling and physical layer networking issues, and printer troubleshooting and/or maintenance.

Education

London Metropolitan University, United Kingdom.

Master of Science, Polymer Science & Engineering

Imo State University, Nigeria.

Bachelor of Science, Industrial Chemistry

CompTIA Security+

CISA & CRM (In Progress)



Contact this candidate