Risk Management Customer Service
Resume:
Raymond G. Ritchie, JR.
***********@*****.*** 412-***-****
Operations Incident Response / Vendor Risk Management / Client Service Support
I have a wide variety of operations management, Vendor, business and technical liaison experience. Operations support with Operations Identity Access Management (IAM), Data Loss Prevention (DLP), Vendor risk management
Customer Service focused business professional with 20+ years of experience related to financial application management, supervision, team leadership, project management, security risk & control management, Client product relations, 3rd party assessment and Vendor support.
Relationship Management: Collaborates across functional areas to educate lines of business on operations and support, information technology, security policies/controls to support and improve Client relationships.
Project Management: Organized and hard-working professional dedicated to ensuring successful implementation of projects through MS Project, management, supervising, risk management and client focus. Managed Y2K IT Projects, built Y2K lab (Infrastructure Facilities), Data Center relocations and Risk Management.
PROFESSIONAL EXPERIENCE
Federated Hermes, Information Security Group, Pittsburgh, PA
Senior Business Security Analyst – Project and Risk Management April 2024–Present
Business Security Analysis working with Security team to enhance SailPoint, onboard SIEM Exabeam/Cribl, NDR ExtraHop, DLP security, Planview, and Pen Test applications. Worked with Service Providers with process improvements related to SOX audit. This included adding SOX applications into Cherwell workflow and helping Security team to create flows and organize processes related to server AD administration.
PNC CORPORATION, PNC Financial Services Group, Pittsburgh, PA
Security Operations Analyst – Project and Risk Management Dec 2015–Dec 2023
Business Analysis and Project management of RBAC process improvement. RBAC user access setup and administration with Baseline and Requestable Roles within the Oracle Identity Manager (OIM) environment.
Business Analysis and Project management of Symantec DLP, Voltage Secure Email, ProofPoint Email analysis, USB access restrictions and DataLocker IronKey support. Client support of Azure Data Classification within Microsoft applications. Support of Imperva Database Scanning and Data Insight Directory scans.
Core Competencies:
Customer Service, Project Management, Information Security Technologies: Support our lines of Business with the following technologies: Role Based Access Control (RBAC), Oracle Identity Manager (OIM), SailPoint, Oracle Access Developer, Microsoft Access Database, Symantec Data Loss Prevention (DLP), Voltage Secure Email, USB access (IronKey, Kingston, iPhone, Camera), Azure Data Classification tool, Oracle Identify Manager (OIM), Removable Media Control (RMC), Imperva Database scanning, ProofPoint Email support, EFSS, eTLS, EFX, MaaS360, knowledge of CASB and SASE, Data Security Record support (ServiceNow), Data Insight scans, Information Lifecycle Governance (ILG) support with Iron Mountain, GLBA assessment support.
Raymond G. Ritchie, JR. Page Two
PNC CORPORATION, (continued)
Relationship Management, Effective Communications: Work closely with our business units to help them communicate with our Clients and new business by using the safest and most efficient communication methods available while protecting our data. Streamlined our support process by implementing new ServiceNow/PowerLink flow for efficient tracking and metrics. Work closely with our Clients and OIM team to improve our Secure Email and USB request process. Comfortable working with all areas of Cyber Security, Business, Clients, and IT.
Information Security Management, Problem Solving: Created document tracking system for efficient search of any topic and documentation within our team. Maintain multiple Data Security documents for PNC intranet page to inform users of secure methods for sending and receiving data with external Clients. Worked with our USB IronKey vendor DataLocker to implement new USB drives. Involved our PowerLink and Symantec Endpoint Protection (SEP) technical teams to implement new devices.
Management Reporting: Worked with DLP system to download data to build metrics for new reports.
HIGHMARK, Pittsburgh, PA
IT Team Manager / Project Management / Sr. Business Technical Analyst Jan 2012 – Nov 2015
Core Competencies:
IT Management, Product Knowledge: Managed 14 developers (JAVA, COBOL) supporting our Provider systems on mainframe and open systems architecture. Did some COBOL programming to help our team. Built a new team of Business Analyst Data Stewards to correct Membership data discrepancy issues within enrollment systems. Lead our Delivery-Provider team, supporting issues related to 40 Provider apps and release management.
Relationship Management: Worked with Clients and Business Analyst teams to enhance process, prioritize assignments and completion. Improved relationships with clients, vendors, and internal departments.
Leadership: Coached, mentored, set standards and goals for our developers, BA’s and Data Stewards related to projects, requests, discrepancy reports, and SharePoint site support. Facilities floor safety coordinator.
BNY MELLON CORPORATION, Pittsburgh, PA Jan 1994 – Dec 2011
Security Analyst / IT Manager, Technology Risk Management and Client Technology Services
Core Competencies:
Product Knowledge, Customer Service: Information Security professional experienced with financial application project management, risk management, IT Audit, vulnerability testing, site assessments, security administration and access control. Supported multi-tier client server financial product line with 500 clients in 20 countries.
Relationship Management, Effective Communicator: Educated lines of business on information security regulations, corporate policies, and controls. Worked with merger team on Information Security GAP analysis, producing new procedures and support modules within the Archer application environment.
Information Security Management: Evaluated Security Administration controls and procedures, access control, incident reporting, tracking, and monitoring, which included IT Audit assessments.
Information Security Technologies: Managed Internet application vulnerability tests performed by an outside vendor. These tests guided security improvement of critical internet application software development. Annually managed vendor selection process related to Internet vulnerability testing.
Management Reporting: worked with multiple databases (DB2, MS Access, Archer, COBOL) and report writer query tools (SQL, Archer, Excel) to organize and analyze information related Security vulnerabilities.
Leadership, Customer Service: Contributed to development of risk awareness program and conducted training to ensure our business stakeholders understood risk and promoted risk-aware culture.
EDUCATION Bachelors of Science – Information Science, University of Pittsburgh, Pittsburgh, PA
Contact this candidate