Professional Summary
Skills
Experience
Funmilayo Fajemisin
202-***-**** *********@*******.*** silver spring, maryland 20904 Highly skilled and dedicated Information System Security Officer with six years of experience in ensuring the security and integrity of information systems. I am adept at implementing and maintaining robust security measures to safeguard against threats and vulnerabilities and seeking a challenging position where I can utilize my cybersecurity and management policy expertise to protect and enhance organizational information assets.
• Virus monitoring • Disaster recovery • Information protection
• Acesss control management • Application and data base security • Procedure documentation Information System Security Officer February 2020 - Current Deloitte (Contractor), Fort Meade, MD
• Prepare all reports and required deliverables, and attend client and staff meetings.
• Create, update, and assess compliance of system Authority to Operate (ATO) packages.
• Apply information system security principles, procedures, and practices under the Risk management framework(RMF)
• Develop and coordinate all authorization documentation
• Implement security controls, monitor system security posture, audit user activity, and maintain and update documentation.
• Work with system administrators to validate patching, system hardening, and compliance.
• Perform security audits in accordance with established procedures. Develop, update, and maintain certification and accreditation documentation, including but not limited to Risk Management Framework (RMF) artifacts, Authority to Operate (ATO), Plan of actions and Milestones (POA&M), waivers, and vulnerability mitigation plans.
•
Information Systems Security Officer February 2018 - December 2019 Citi Bank (Contractor, Washington, District of Columbia
• Reviewed and recommended updates to information security policies, standards and guidelines.
• Participated in business continuity and disaster recovery preparedness activities.
• Defined security practices and standards to safeguard company assets and data.
• Assisted with evaluation, selection and implementation of security products and technologies.
• Assessed information security performance, identifying problems, evaluating trends and anticipating requirements. Supported development, documentation and presentation of IT security awareness, education and training for management, IT personnel and users.
•
Information System Security Officer June 2016 - January 2018 Education
Certifications
Bank of America (Contractor), Washington, DC
Planned, developed, and conducted vulnerability and compliance scans, contingency plan testing, and risk assessment on clients' information systems.
•
Analyzed results to identify and mitigate risk to IT systems, identify training opportunities, and updated and improved information systems documentation in accordance with client's IT security policies and System Security Plan (SSP)
•
Lead remediation efforts when security controls are insufficient, weaknesses are identified in network security configurations, and vulnerabilities deviate from client's security policy or federal guidelines by recommending corrective actions to mitigate identified deficiencies and developing POAMs.
•
Performed IS security briefings, reported all security incidents to the ISSM (Information Systems Security Manager), and investigated, documented, and provided reports, as well as provided protective and corrective measures in response to such incidents.
•
• Managed and controlled changes to the system and assessed the security impact of those changes. Bachelor of Science: Cybersecurity and Management Policy - University of Maryland Global Campus CompTIA Security+ Certified, CGRC ISC2 (in progress)