Cybersecurity Analyst

Herschel McLemore III

+1-540-***-**** *******************@*****.*** www.linkedin.com/in/herschelmclemoreiii SUMMARY

Technical cybersecurity/risk analyst and network engineer with 4 years of hands-on experience implementing security controls, configuring network infrastructure, and hardening systems against threats. Proficient in aligning environments with compliance standards including NIST 800-53, ISO 27001, HIPAA, PCI-DSS, SOX, and TPRM. Strong background in cross-functional collaboration to deploy secure, scalable solutions. EDUCATION

Virginia Commonwealth University Anticipation Graduation Year of 2026 B.S. Finance/Banking

TECHNICAL SKILLS

GRC & Risk Platforms: ServiceNow GRC, RSA Archer, OneTrust, Excel Audit Templates Security & Infrastructure Tools: Qualys, Nessus, Cisco ASA, Firewall ACL Audits, IAM/ PAM,Wiz, Splunk, Wireshark Productivity & Documentation: JIRA, Confluence, SharePoint, Zoom, Outlook, Microsoft Office Application & System Reporting: ERP Systems, IT Operations Support, Vulnerability Remediation, Application Ownership Governance & Compliance Frameworks: NIST 800-53, ISO/IEC 27001, SOC 2 Type II, SSAE18, PCI-DSS, SOX (ITGC), COBIT, TPRM Lifecycle, Encryption Key Management, Data Classification, FIPS 140-2/3 Cryptographic Tools & Protocols: TLS, SSL, PKI, Cipher Suites, Digital Certificates, Digital Signatures Cloud & SaaS Platforms: AWS KMS, Azure Key Vault, GCP Security Services, Audit support Network & Proxy Analysis: TCP/IP, DNS, web traffic log inspection, Zscaler proxy alert triage CORE COMPETENCIES

• Vulnerability Scanning & Risk Scoring

• Third-Party Risk Assessments (TPRM)

• Audit & Remediation Oversight

• Vendor Engagement & Control Testing

• Policy & Evidence Review (SOC Reports, Pen Tests, DR/BC Plans)

• Data Encryption & TLS/SSL Configuration

• Network Segmentation & Perimeter Defense

• Proxy Log Investigation (Zscaler)

CERTIFICATIONS

CompTIA Security+ Apr 2025 – Apr 2028

CCNA Cisco Jan 2025 – Jan 2028

EXPERIENCE

Bank Of America (Contract/Project Based) Richmond, VA (Hybrid) Network Systems Engineer Jun 2024-Oct 2024

• Oversaw the management of Real-Time Communication (RTC) applications with a focus on vulnerability remediation, patch deployment, and security hardening.

• Served as a subject matter resource for audit and vendor risk issues across multiple departments, providing guidance and support for external legal recovery and vendor oversight teams.

• Implemented firewall rule audits and reviewed ACLs (Access Control Lists) to strengthen perimeter defense and segment sensitive assets within network zones.

• Performed firewall and ACL audits using Cisco ASA, strengthening zone-based segmentation.

• Supported endpoint telemetry correlation with Wireshark captures to verify post-exploitation signatures.

• Analyzed DNS queries, TCP/IP flow, and Zscaler proxy traffic to detect lateral movement and anomalous behavior.

• Conducted assessments of TLS/SSL, PKI, and cipher suites for alignment with FIPS 186-4/5, SP800-186, SP800- 90B, and other cryptographic standards.

T-Mobile (Contract/Project Based) Bellevue, WA (Remote) Information Security Analyst Jun 2023-Jan 2024

• Led end-to-end third-party risk assessments for both existing and prospective vendors, identifying potential exposures and ensuring alignment with enterprise security standards

• Reviewed encryption key lifecycle management practices across AWS KMS and Azure Key Vault, ensuring compliance with FIPS-level cryptographic control requirements.

• Conducted vulnerability analysis using Qualys and Nessus, and initiated remediation strategies in collaboration with system owners and patch management teams.

• Maintained documentation in Confluence and SharePoint, and advised on compensating controls and risk mitigations.

• Triaged endpoint alerts using Splunk and internal monitoring systems; collaborated with engineers to validate and suppress false positives.

• Performed forensic audits of PKI implementation and digital certificate expiration alignment across federated environments.

Salesforce (Contract) San Francisco, CA (Remote)

Risk and Compliance Analyst Feb 2022- Apr 2023

• Identified and documented impacted security controls related to discovered vulnerabilities, working with teams to mitigate and track remediation efforts.

• Led third-party security control testing, including analysis of SOC 2 Type II, SSAE18, PCI AoC/RoC, and other attestation reports to assess control effectiveness and compliance posture

• Executed compliance audits and control testing in alignment with the annual Corporate Compliance Audit Plan, ensuring adherence to regulatory and internal standards.

• Collaborated on TLS validation efforts to ensure proper encryption and certificate management across business- critical systems.

• Supported email-based incident response, reviewed suspicious headers, phishing reports, and flagged attachments for escalation.

• Conducted control testing aligned with ISO 27001, NIST 800-53, and internal compliance plans. Monitored digital certificate compliance across Salesforce instances, contributing to PKI hygiene and encryption audit readiness.

Atlantic Union Bank (Contract) Glen Allen, VA (Hybrid) Risk and Compliance Analyst Jan 2021- Jan 2022

• Leveraged the ServiceNow GRC and RSA Archer to manage the full risk lifecycle, including identification, assessment, remediation planning, and continuous monitoring.

• Performed detailed evaluations of internal policies against NIST, ISO 27001, and industry best practices to assess organizational compliance and recommend corrective actions

• Supported the Third-Party Risk Management (TPRM) lifecycle by executing risk assessments, due diligence reviews, and continuous oversight of vendor performance.

• Supported SOC and GRC teams with encryption analysis across endpoint and SaaS connections.

• Conducted certificate lifecycle management, including renewals, revocations, and trust chain validation across multiple environments.

• Conducted internal risk assessments and gap analyses based on NIST, ISO, and SOX frameworks. Apple Federal Credit Union (Internship) Washington, DC (Onsite) Financial Analyst Intern Dec 2019- Dec 2020

• Assisted in preparing financial reports (weekly, monthly, quarterly, annual) and developed Excel-based 3- statement and budget models.

• Supported the compliance team during security audits and internal assessments, including answering security questionnaires.

• Contribute triaged endpoint alerts using Splunk and internal monitoring systems; collaborated with engineers to validate and suppress false positives.

• Utilized spreadsheets, databases, and reporting tools to analyze financial data and ensure data integrity.

• Participated in high-level meetings and collaborated with cross-functional teams on audit and cybersecurity tool optimization.

Contact this candidate