Delivery Driver
Resume:
KWAME BROBBEY-MENSAH
**** ****** ****** ** ~ Silver Spring, MD 20906 ~ Phone: 240-***-**** ~ Email: *******@*****.***
Technology Management
Cybersecurity Operations & Risk Management Framework
Innovative and proactive Technology Professional with increasingly responsible experience in information system engineering, system administration, technical support and staff management. Managed system security, including policies, procedures, and disaster recovery and business continuity projects for critical systems of the Federal Aviation Administration and United States House of Representatives. Possess strategic thinking and problem-solving skills, with a talent for leveraging IT to achieve business objectives. Strengths include:
Cybersecurity/ Risk Management / Malware Analysis / Physical Security / Firewalls / SIEM
Business Continuity & Disaster Recovery Planning / Incidence Response / Intrusion Detection
Vulnerability Management / Risk Analysis / Governance Risk and Compliance
Network Administration / Systems Analysis / Database Management
Project Management / Staff Leadership / Security Awareness Training/Computer Forensics
MS / CISSP /CISM/CCSE/CCSA/ MCP
CERTIFICATIONS:
Certified Information Systems Security Professional (CISSP, 2001)
Certified Information Security Manager (CISM, 2004)
Certified Check Point Security Expert (CCSE, 2003)
Certified Check Point Security Administrator (CCSA, 2003)
Microsoft Certified Professional (MCP, 1998)
CompTIA Security+ (2011)
Education:
Capitol Technology University – Laurel, MD
Doctor of Science (D.Sc.), Cybersecurity (to be completed in May 2025)
Webster University – Bolling Air Force Base, Washington, DC
Master of Arts, Business and Organizational Security Management (March 2007)
University of Maryland University College – Adelphi, MD
Master of Science, Computer Systems Management (May 2002)
Emphasis on Information Security & Database Systems
Strayer University – Washington, DC
Bachelor of Science, Computer Information Systems (1999)
Southeastern University – Washington, DC
Graduate Certificate, Oracle Database Administration (1999)
TECHNICAL SKILLS:
Security Management: Strong planning, design, implementation, maintenance, support, training, and skills in Firewalls, Encryption Technologies, Intrusion Detection Systems, IPSec, Private Key Infrastructures, Penetration Testing, VPNs, Biometrics, SIEM analytics and management, and RMF.
Security Applications/Tools: Check Point Firewalls, BigFix, Mcafee ePO, Intrushield, NetWitness, WebInspect, Applications Manager, WebSense, AirDefense, Nessus, Fidelis, RSA SecureID, Tripwire, FireEye Systems, Encase Forensics, ArcSight, Splunk, Lancope, Tripwire, among others.
Operating Systems / Network Management: Proficient in the installation, configuration, support, and troubleshooting the following Operating Systems: Windows Servers, and VMWare VSphere.
Kwame Brobbey-Mensah ~ Page 2
Windows Operating Systems, Virtualization technologies, UNIX/Solaris, Linux, VMWare vSphere, Routers, Gateways, and Switches.
Languages / Databases / Applications: Oracle, MS Access PL/SQL, C++, C, HTML, Visual Basic, MS Office Professional 365, MS Project, Vision, Visio, Remedy, Lotus Notes, and Cold Fusion, PeopleSoft.
Network Protocols / Topologies: TCP/IP, VPNs, OSI Model, Ethernet, Token Ring, FDDI, and 802.11.
Possess working knowledge of Artificial Intelligence and Machine Learning models.
PROFESSIONAL EXPERIENCE
DOORDASH DELIVERY SERVICE, ROCKVILLE, MD
Delivery Driver 2023 to Present
Pick up items food and other items from restaurants, supermarkets, auto stores, pet stores, among others to be delivered to customers homes, shops, offices, and other places.
Liaise with Doordash Support team, from time to time, to correct complexities relating to certain deliveries.
US HOUSE OF REPRESENTATIVES – Washington, D.C. 2005 to 03/2018
Senior Information Systems Security Analyst
Possess strong working knowledge of NIST 800-37 Risk Management Framework (RMF), NIST 800-53 Security Controls, and Assessment and Authorization (formerly known as Certification & Accreditation).
Develop and administer procedures and respond to security requests from Members of the House of Representatives, Committees, Sub-Committees, and House support services.
Review and enforce compliance with established US House of Representatives’ security policies and procedures.
Managed firewalls by blocking host names and IP addresses, and Intrusion Detection systems.
Conduct periodic enterprise risk/vulnerability analysis and mitigate, via countermeasures, to protect the House of Representatives’ information infrastructure as well as major applications and subsystems.
Perform technical duties relating to system security requiring expertise in communication backbone, protocols, LAN/WAN, network operating systems, server, router configuration, firewalls implementation and system penetration technologies.
Daily usage of tools such as Lancope for capturing data flows, Splunk for SIEM activities, McAfee ePO to manage antivirus, RSA Archer for compliance issues, FireEye HX and Tripwire, among many others, for managing endpoints.
Monitor SOC operations to prevent, detect, assess, and respond to cybersecurity threats and incidents thereby leading to containment, eradication, and recovery of systems.
Manage RSA server for the issuing of SecureID tokens and user remote access connectivity (VPNs).
Manage backups for multiple enterprise systems, automated and otherwise.
Provide 24x7 hour coverage of security functions.
Kwame Brobbey-Mensah ~ Page 3
ASM EDUCATIONAL CENTER, INC. – Rockville, Maryland 2002 to 2023
Consultant/Instructor
Responsible for the development and implementation of training curriculum in the Information Security
Certification courses, such as Security+, CISSP, CySA+, and Check Point Firewalls.
Train and assist several Information Technology professionals, from industry and the government sector to become certified in Security+ and CISSP.
Liaise with vendors on methods, resources, and techniques for successful training programs.
Facilitate Information Security clinics for students consisting of high-end network/security engineers from many recognizable Information Technology firms.
Lead short term consulting projects addressing Network Security and Infrastructure issues for clients with acute need in data confidentiality, integrity, and availability.
THOMPSON, COBB, BAZILIO and ASSOCIATES, PC – Washington, D.C. 2004 to 2005
Senior Information Technology Auditor
Engaged in HIPAA (Health Insurance Portability and Accountability Act) Security Final Rule implementation for the District of Columbia’s nine covered entities/agencies and sub-agencies.
Performed risk analysis, gap analysis, vulnerability assessments, including penetration testing, in all affected District of Columbia agencies to enable compliance with HIPAA Security Final Rule by April 21, 2005.
Performed business impact analysis for all Washington, DC government’s covered agencies in furtherance of a comprehensive disaster recovery plans for each agency.
Conducted information assurance audits, based on the COBIT standard, for corporate clients to comply with the Sarbanes Oxley Legislation (SOX).
HOWARD UNIVERSITY HOSPITAL – Washington, D.C. 2004 to 2004
Information Security Manager
Designed, developed and oversaw the implementation of security changes and enhancements to the Information Technology (IT) computing environment of the entire Howard University Hospital (HUH).
Reviewed a comprehensive risk analysis in the entire HUH’s information systems to determine threats and vulnerabilities and implemented risk mitigation strategies in preparation for a successful HIPAA compliance by April 21, 2005.
Determined and created appropriate security policies, procedures, and guidelines to support security management initiatives.
Facilitated periodic and mandatory HIPAA security compliance training for HUH employees, including nurses, physicians, and residents.
Reviewed and enforced policies and procedures for monitoring and controlling access to system resources and data
Oversaw and coordinated efforts across different functions/departments in the entire organization to identify key corporate security initiatives and appropriate mitigation strategies.
PROFESSIONAL MEMBERSHIPS
International Information Systems Security Certification Consortium (ISC2)
Information Systems Audit and Control Association (ISACA)
American Society for Industrial Security International (ASIS)
Institute of Electrical and Electronics Engineers (IEEE)
Other
CHARLES W. GILCHRIST CENTER FOR CULTURAL DIVERSITY – Montgomery County, MD 2002 to 2005
Volunteer Instructor / Cultural Ambassador
Taught adults immigrants Introduction to Computer Applications and Microsoft Office 2000 courses.
Recipient of Montgomery County’s Best Honor Award in the National Association of Counties (NACo) Achievement Award category on February 19, 2004, in Silver Spring, Maryland.
Contact this candidate