Project Manager It Security
Resume:
Richard Santiago
********.*******@*****.*** 757-***-**** Norfolk, VA https://www.linkedin.com/in/richardsantiago01
SUMMARY
Project Management Professional with over 20 years of experience leading IT security, compliance, and risk management projects. Proven track record in coordinating IT audits, executing risk assessments, and managing project timelines to deliver regulatory compliance and security objectives. Expertise in managing cross-functional teams, developing policies, and ensuring alignment with frameworks such as NIST, ISO 27001, and HIPAA. Proficient in utilizing project management methodologies to streamline processes, deliver actionable solutions, and mitigate risks.
WORK EXPERIENCE
Bylight LLC Fort Eustis, VA
Project Manager Jun 2021 - Present
•Led IT security and compliance projects, ensuring adherence to NIST, SOX, and PCI requirements.
•Coordinated internal and external audit activities by liaising with stakeholders and technical teams, meeting deadlines and resolving findings.
•Managed project timelines, deliverables, and risk mitigation strategies to close compliance gaps.
•Developed and implemented IT security policies and procedures, aligning with organizational and regulatory requirements.
•Delivered reports and metrics to senior leadership, supporting informed decision-making on technology risks.mplemented technical security procedures, achieving a 25% reduction in data breaches and maintaining compliance, contributing to successful project outcomes.
•Applied NIST 800-53 controls to enhance system compliance, effectively cutting risk factors by half and ensuring project deliverables met security standards.
•Reviewed IT security systems, monitoring activity, and assessing the state of IT security controls to support project goals.
•Managed audit response projects, providing evidence collection, documentation, and remediation plans for compliance gaps.
•Conducted vulnerability assessments and implemented remediation strategies, ensuring alignment with industry frameworks.
•Provided project oversight for updating security policies and procedures to maintain compliance with NIST and ISO standards.
•Coordinated with stakeholders to deliver risk assessment reports and ensured remediation actions were completed on time.
•Enhanced organizational cybersecurity through comprehensive threat and vulnerability management programs, crucial for project success.
•Monitored and reported on control self-assessments for Information Security controls, ensuring project alignment with established standards.
•Enforced data and system integrity by implementing Department of Defense technical standards and procedures, supporting project objectives.
•Developed and documented internal security policies, procedures, and protocols, assisting in audit processes and system authorization activities critical for project compliance.
COMSECONDFLT / US NAVY Norfolk, VA
Project Manager Jan 2018 - Aug 2021
•Directed compliance projects, conducting risk assessments and ensuring systems met NIST 800-53, HIPAA, and ISO 27001 requirements.
•Collaborated with senior management to implement security controls and develop mitigation strategies for identified risks
•Prepared project documentation, including remediation plans, audit findings, and security controls implementation.
•Managed cross-functional teams to validate compliance and address audit observations.
•Conducted third-party risk assessments, collaborating with business representatives to develop risk treatment strategies, achieving a 98% rate in risk mitigation for projects.
•Developed and delivered training sessions on security and risk management for IT teams, enhancing project effectiveness.
•Conducted NIST SP 800-37 Risk Management Framework activities, ensuring compliance through regular assessments and remediation efforts, vital for project continuity.
•Contributed to maintaining the Authorization to Operate package, updating critical security documentation, and identifying process automation improvements to streamline project workflows.
USS BAINBRIDGE / US NAVY Norfolk, VA
System Administrator / Project Coordinator Apr 2015 - Feb 2018
•Led IT system implementation and maintenance projects, ensuring compliance with security standards.
•Conducted system vulnerability assessments and implemented remediation strategies to address risks.
•Supported audit teams by managing documentation, tracking findings, and ensuring compliance activities were executed.
•Led and managed an enterprise infrastructure update, integrating 128 virtual servers and 210 workstations, ensuring network stability and project uptime.
•Resolved 450 technical issues and maintained 330 user accounts, enhancing system reliability and performance for project success.
•Conducted system vulnerability assessments and collaborated with cross-functional teams to fortify security, supporting organizational project objectives.
•Maintained and improved vulnerabilities and patches throughout the infrastructure, crucial for project sustainability.
EDUCATION
Western Governors University MBA in IT Project Management 2024
Purdue University Northwest Cybersecurity- System Administration Certificate Program 2022
Strayer University Master of Science in Information Systems Management 2022
California Institute of Arts & Technology Certificate in Cloud Administration 2021
CERTIFICATIONS
Project Management Professional Certified Information Security Auditor
Microsoft 365 Certified Administrator Expert Associate Chief Information Security Officer
Certified Information Security Manager
Certified Ethical Hacker
Associate Certified Chief Information Security Officer
CompTIA Advanced Security Practitioner
CompTIA Pentest + Ce Certification
CompTIA Linux + Ce Certification
Splunk Core Certified User
SKILLS
Risk Management • Project Management • Audit Controls • Business Processes • Risk Assessment • Audit
Engagements • Information Security Policies • Security Solutions • Access Management • Government Regulations
•Security Compliance • Security Risk Assessment • Technical Writing • Relationship-Building • Analytical Skills
Contact this candidate