Security Analyst Information

Mary Boateng Yeboah

Snr IT Security Analyst

Georgetown, TX 78628

Phone Number: 512-***-****

Email: *************@*****.***

Personal Objective

I am seeking for a security analyst opportunity in an environment where I can contribute to build a stronger team, learn, grow, and help protect the information systems and as Information Assurance professional support an organization with focus on IT Security and compliance.

Professional Experience

Sevita Network, Austin, TX

Information Security Risk Analyst June 2018 – Present

Perform vendor security assessment on new or existing vendor provided services

Perform security control test plans and conduct in-depth security assessments of information systems that evaluate compliance of administrative, physical, technical, organizational and polices safeguards in order to maintain HIPAA compliance base on Office of Civil Right (OCR) protocol, NIST SP 800-66 Rev1 and security controls (NIST SP 800-53)

Conduct IT controls risk assessments that included reviewing organizational policies, standards, procedures and guidelines

Analyzed organizational information security policy needs based on stakeholder interactions, develop and publish policy, standards, security handbook, and procedures for implementation ensuring alignment with leading IT Security Frameworks

Conduct Security assessments on internal hosting applications within health systems and assessing control gaps.

Development of HIPAA compliance reports, documenting auditing findings and development of corrective actions plans

Develop Remediation Plans with regards to the results of the HIPAA Security

Provides support and security related guidance to system owners, business units, PMs and other stakeholders.

Complete risk assessments, security requirements analysis, and security testing for existing and new applications.

Create assessment reports and track remediation activities

Communicate with IT client team to gather evidence, developed test plans, testing procedures and documented test results and exceptions

Conduct security walkthroughs, formulated test plans, documented gaps, test results, and exceptions; and develop remediation plans for each area of testing Pavilion At Great Hills Austin,

Information Security Analyst April 2016 - June 2018

Conducted risk assessments, provided recommendations and engaged in remediation activities

Developed and implemented security standards, and researched on latest security trends

Performed security awareness campaigns and regularly educating the staff on emerging security issues to be on alert to protect the hospital

Conducted third party/vendor security assessment for new and existing application

Monitored, reported and educated staff on HIPAA security and Privacy compliance

Review and Analyze reports of third parties and Data Center

Assisted in the development of key security standards and guidelines by performing an in-depth security assessment using frameworks like PCI DSS, ISO 27001 and SOX to help gain compliance

Routine development of HIPAA compliance reports, documenting auditing findings and corrective actions

Demonstrated ability to manage a privacy program in an integrated healthcare delivery system

Led role in healthcare with emphasis on implementation of health information privacy programs in patient care environment

Education

St Patrick’s International College London, UK

Skills Set Summary

Technical Writing

MS Projects ( Advanced)

MS Excel ( Advanced)

Certification

Risk Management Framework

Security + (In-view)

Contact this candidate