Risk Management Security Assurance Analyst
Resume:
Chazidi Ferguson
St. Louis, MO 314-***-**** ********.*******@*****.***
Professional Summary
Results-driven Cybersecurity and Compliance professional with a strong foundation in risk management, regulatory compliance, and security assurance. Experienced in conducting security assessments, incident response, and vulnerability management to mitigate cybersecurity threats. Proficient at aligning IT security policies with frameworks such as NIST, FedRAMP, and StateRAMP, ensuring compliance with improving security posture. Passionate about enhancing organizational resilience and protecting data integrity through proactive auditing, monitoring, and remediation strategies.
Education
Master of Science: Cybersecurity, March 2025
Webster University - St. Louis, MO
Bachelor of Science: Information Technology, March 2020
Lindenwood University - St. Charles, MO
Certifications
Security Assurance Certification (SAFR), Federal Reserve Bank of St. Louis
Threat and Detection Certification, Webster University
Leadership Essentials Certification, McKinsey & Company
Skills
Security Compliance (FedRAMP, StateRAMP, NIST 800-53, ISO 27001)
Security Controls & Data Privacy
Risk Management Framework (RMF)
Security Assurance & Application Testing
POAMs (Plan of Actions and Milestones) & Security Exceptions
SQL (For audits and compliance reporting)
Governance, Risk & Compliance (GRC) Tools: RSAM, XACTA, JIRA, FedAPM
Cybersecurity Tools: Autopsy, Wireshark, FTK Imager, Okta
Continuous Security Monitoring
SCAs (Security Control Assessments)
Vulnerability Assessments & Risk Remediation
CMCAs (Continuous Monitoring Control Assessments)
Business Continuity Planning & Disaster Recovery
SIAs (Security Impact Assessments)
Cyber Incident Response & Threat Analysis
ATO (Authority to Operate)/IATO (Interim Authority to Operate)
Compliance Assessments & IT Security Audits
Cloud & Infrastructure Security
Work History
Business Systems Analyst II, Compliance Liaison, 04/2023 - Current
Federal Reserve Bank of St. Louis, Security and Surveillance– St. Louis, MO
Ensure project goals are articulated, customer needs are met, and the local departments adhere to the security assurance and compliance process
Conduct cybersecurity risk assessments and compliance evaluations to ensure alignment with FedRAMP, StateRAMP, and NIST 800-53 frameworks
Develop and maintain POAMs, risk exceptions, and security remediation plans to address vulnerabilities
Collaborate with external auditors and internal security teams to drive compliance with regulatory security requirements
Lead security incident investigations, coordinating with stakeholders to assess threats and implement mitigation strategies
Conduct continuous security monitoring and disaster recovery testing to enhance resilience against cyber threats
Utilize GRC tools (RSAM, XACTA, JIRA) to manage security compliance workflows and document audit findings
Conversion Data Analyst, 09/2020 - 03/2023
Reinsurance Group of America – St. Louis, MO
Translate raw data submission by analyzing, mapping, and testing for validity prior to data being loaded into the administration system
Analyzed, mapped, and validated raw data for administration system accuracy
Debugged system solutions and collaborated with developers to achieve accurate, data-driven outcomes
Analyze, test and debug system solutions
Executed SQL queries to test data accuracy and support business analysis requirements
Title Coordinator, 03/2019 - 09/2020
Enterprise Fleet Management – St. Louis, MO
High-impact communicator effectively interpreting and conveying information with diverse audiences daily
Acted as Subject Matter Expert for over 100 offices, fostering a culture of operational excellence
Used SQL to create monthly transaction reports and audit data accuracy
Troubleshot data inconsistencies, ensuring alignment with standard operating procedures
Reimbursement Data Analyst, 09/2017 - 02/2019
BJC Behavioral Health – St. Louis, MO
Analyzed and processed accounts receivable to ensure continuous cash flow and developed strategies while utilizing Excel and payor systems
Managed process improvement projects to optimize cash collection functions
Utilized statistical methods for data analysis, supporting financial and operational decision making
Audited reimbursement payments from national payors, resolving discrepancies and optimizing workflow
Reimbursement Representative, 09/2016 - 09/2017
BJC Behavioral Health – St. Louis, MO
Coordinated with inter-departmental associates to obtain appropriate information and manage the reimbursement process
Analyzed and resolved complex financial discrepancies, identifying risks and developing mitigation strategies that ensured accurate and compliant financial reporting
Collaborated with cross-functional teams to gather data and manage end-to-end reimbursement processes, improving process efficiency and reducing errors
Delivered high-quality service by rapidly identifying and addressing issues
Developed weekly reports for clinical and medical staff, leveraging data analysis skills to ensure clear, actionable insights
Sr. Patient Services Coordinator, 06/2012 - 08/2016
Express Scripts – St. Louis, MO
Executed excellent customer service and communication skills by verifying and collecting appropriate information, and scheduling and registering and recording patient data in an expedient and accurate manner
Supported patient financial inquiries, ensuring compliance with HIPAA guidelines
Trained new employees in software usage and customer service protocols
Developed and maintained databases to enhance service quality and resolve billing issues
Impactful Initiatives
Developed and Implemented a Comprehensive Vulnerability Management Strategy: Designed a structured vulnerability management framework that included risk prioritization, continuous security monitoring, and remediation planning. This strategy strengthened the organization’s risk posture, reduced security gaps, and ensured compliance with NIST 800-53, FedRAMP, and StateRAMP standards.
Enhanced Security Compliance: Developed and implemented a structured approach to documenting IT system functionalities, ensuring alignment with cybersecurity controls and enhancing data security compliance. This approach minimized risk exposure and supported adherence to regulatory standards.
Cross-Team Threat Analysis and Remediation: Led cross-functional threat analysis efforts, coordinating with both internal and external teams to investigate potential security risks and develop remediation plans. This initiative improved the Federal Reserve Bank’s risk posture by addressing vulnerabilities in real-time and preparing the team for effective cybersecurity incident response.
Disaster Recovery and Resilience Training: Coordinated and led disaster recovery training sessions and implemented continuous monitoring and threat detection and response protocols, ensuring organization preparedness for system outages or security breaches.
Contact this candidate