Safety Assistant Line Worker
Resume:
Prince S. Gadogbe
Brooklyn Park, MN 763-***-**** LinkedIn advgtp@r.postjobfree.com
Information Security Professional
Dynamic, innovative IT Risk and Compliance Professional with years of experience in Compliance frameworks including ISO 27001, SOC, PCI-DSS. Possess detailed knowledge of the SOC environment and RMF experience. Adept at working in teams or independently to ensure operations always run smoothly. Skilled in working under pressure in deadline-driven settings. Seeking a Governance, Risk &Compliance, Information Security, SOC & RMF Analyst role that will foster opportunities for growth and learning in corporate or private sector environments.
Experience
January 2022-July 2022.
MoneyGram International.
Information Security Risk Compliance Analyst
Conducted and coordinates access reviews of systems applications with data stewards to ensure access is appropriate and separation of duties exists.
I helped identify areas of greatest risk by ensuring compliance monitoring plan focus on areas that pose the most significant risks.
Helped organizations improves performance in Compliance and other areas of operations through monitoring and identifying gaps in areas of most significant risks. Made recommendations that any changes in new laws impacting organizations should also trigger policy reviews in these high-risk areas.
Helped manage clients Security Risk Assessment to assess the effectiveness of their vendor controls against NIST SP, ISO 27001, PCI DSS, SOC and other security and compliance frameworks.
Determined information security risk profiles for Third Parties using questionnaires and knowledge of company policy, relevant industry best practices and standards.
Performed PCI-DSS Self-Assessment Questionnaire (SAQ) evaluations, gathering evidence, Reports of compliances and Attestation of Compliance.
Ensured vendor submit an external security assessment, which meets the following criteria.
The assessment covers the testing of data protection, privacy, and security controls in place by the vendor.
The assessment is performed and signed-off by an organization that is independent from the vendor.
The controls in the assessment are representative of the vendor's current state.
Reviewed Security policies and procedures including Vulnerability Scans, Penetration Test, PCI-DSS, ISO27001, SOC 1,2 and 3 and follow up with IT to remediate vulnerabilities within acceptable time.
Ensured compliance in the areas of SOX, SOC, GDPR, PCI, HIPAA, and other Global Regulations by ensuring IT controls are operating effectively.
Ensured controls deficiencies are tracked and remediated in timely manner and with this compliance I helped organizations guard against liability, data breaches, and costly regulatory fines like HIPPA penalties.
Marigold Solutions Inc. (VA)
Information Security Analyst 2021 – Nov 2021
Examined Nessus vulnerability scan results, partnering with a Remediation Team of Engineers and Administrators to identify and resolve important vulnerabilities.
Assess Security Information and Event Management (SIEM) with tools used to investigate incidents, determine threats, and provide prompt solutions as issues arose.
Analyzed and triage network security threats per computer and media forensics; also reference malicious code and protocol analyses.
Developed vulnerability reports using CVEs, formulating methods for patching, or fixing affected devices.
Integral to the creation of incident response plans, workflows, and standard operating procedures (SOPs)
Continually maintain security sensors and tools, assessing logs to identify intrusions.
Evaluated firewall, DHCP and IDS/IPS logs.
Monitored performance metrics and offer full-scale updates to management.
Kept the Information System Security Program officer (ISSPO) informed of incident response options prior to implementation.
Reviewed internal policies to understand the IT environment and organizational security requirements.
Authorized findings via the Security Assessment Report (SAR); also create a Plan of Action & Milestones (POA&M) to detail weaknesses across all controls.
Developed patches, updates, and cyber incident tracking measures to resolve open incidents and verify status.
University of Minnesota Medical Center, Fairview (MN)
(HOSPITAL HOPUSEKEEPING SYSTEMS)
Information Security Analyst/Computer Support Analyst. March 2019 – NOV.2020
Assessed SIEM and logging to note network threats, compromises, and intrusions.
Triaged and responded to incidents, eradicating network threats and determining root causes of the security concern.
Triaged service requests from automated sensors and internal requests for assistance
Engaged in cyber hunting to identify and remove network threats.
Facilitated intake using numerous methods such as SIEMs, email, chat, text message, phone call and work queues.
Thrived both onsite and remotely, often working with little to no supervision.
Managed relationships with key departmental heads to ensure understanding of new software’s and its implementation.
Conducted periodic risk assessments, evaluations, and continuous monitoring to ensure controls are working effectively through patch management.
Kept the Information System Security Program officer (ISSPO) informed of incident response options prior to implementation.
Conducted periodic risk assessments, evaluations, and continuous monitoring to ensure controls are working effectively through patch management.
Kept the Information System Security Program officer (ISSPO) informed of incident response options prior to implementation.
University of Minnesota Children Hospital. (HHS)
Environmental Health and safety Assistant Director June 2017- Feb 2019
Monitors Security log for HIPAA breaches.
Designed and implemented training programs, procedures, and protocols for how to handle health and safety threats.
Live monitoring of Epic systems and End points
Assisted with triage, prioritization, and response to workflow.
Provided operational and technical leadership, manage workflow, and assigned task.
Ensured policies and procedures are updated in Epic system.
Tracked performance metrics, prepare weekly job schedules, and hold team meetings to update operational, administrative and safety goals.
Carley inc. Computer Support specialist. 2013 – 2016
Managed relationships with key departmental heads to ensure their clear understanding of new software’s and its implantations.
Reviewed security policies, updates software’s.
Acted as main point of contact for any related IT issues and remediate any vulnerabilities within acceptable times.
Periodic Monitoring of controls throughout computer life circle.
Conducted periodic risk assessment, evaluations, and continuous monitoring to ensure controls are working effectively through patch management, noting gaps and recommended remediation best suited for organization.
Recommended network security standards and upgrades to management.
Implemented company policies, technical procedures, and standard for preserving integrity and security of data, reports, and access.
Productive software, helping to create information in various formats, such as documents, graphs and worksheets.
Synergy Health PLC Assembling/Production Line Worker 2011 – 2013
Participated in production processes including assembly.
Fulfilled clerical and administrative responsibilities as well.
Core Competencies
Information Security, Leadership, NIST Guidelines, RMF/FISMA, SOC, PO&M, HIPAA/PCI DSS, Wireshark, Nessus, Vulnerability Scanning, Cross-Functional Teamwork, Goal Achievement, Training & Development, Strategic Planning, Customer Relations, Analytical Thinking, Organization, Time Management, Communication, Relationship Building, Critical Thinking, Problem Solving, Creativity
Education & Credentials
Security+ Certification, CompTIA.
IT Cybersecurity Bootcamp, University of Minnesota. (Currently Enrolled to 6/2023)
IT Cybersecurity Bootcamp, Crest Consulting Group
Bachelor of Science, Walden University.
Contact this candidate