Post Job Free
Sign in

Information Security Risk Management

Location:
Manchester, NJ
Posted:
June 22, 2025

Contact this candidate

Resume:

RICHES BOAHEN

SUMMARY

Cybersecurity, Information Security, and GRC Analyst with over 5 years of experience in risk management, compliance, and threat mitigation. Proven ability to reduce security incidents by up to 30%, streamline GRC processes by 40%, and ensure adherence to industry standards like ISO 27001, SOC 2, and GDPR. Skilled in risk assessments, security audits, and cross-functional collaboration to strengthen organizational security posture. Focused on delivering actionable insights and aligning security initiatives with business goals.

WORK EXPERIENCE

Led the implementation and management of security governance frameworks (ISO 27001, NIST, CIS) across enterprise operations, resulting in a 30% reduction in compliance gaps. Conducted risk assessments and vulnerability scans for over 50+ client environments, identifying critical security flaws and reducing potential breach points by 40%. Orchestrated policy changes and end-user training program, fostering a security-aware culture and achieving commendation from CISO for preventing 10+ potential security breaches. Managed and maintained security tools such as SIEM, DLP, and IDS/IPS, reducing false positives by 25% through fine-tuning and rule optimization.

Led multi-million-dollar audits and assessments, improving client security postures and achieving 94% success rate in passing compliance audits on the first attempt. Coordinated incident response efforts, containing and mitigating over 30 security incidents annually, minimizing data loss and operational downtime.

Created comprehensive security awareness training programs for 200+ employees, increasing security awareness scores by 35%.

Improved security automation workflows, reducing manual effort by 50 hours/month and accelerating vulnerability reporting cycles by 20%.

Collaborated with cross-functional teams to establish business continuity and disaster recovery plans, ensuring zero critical data loss during testing exercises. IT Security & GRC Analyst / Security Engineer

AGO Worldwide Consulting, Severn MD

Jun 2019 - Present

Manchester, New Jersey, United State • +1-973-***-**** • *************@*****.*** https://www.linkedin.com/in/riches-boahen/

SKILLS

Clear communicator and Friendly

Focused on accuracy and analytics

Flexible and curious

Quickly solves problems

Explains technical ideas in simple terms

ISO 27001, SOC 2, GDPR compliance

Vulnerability & risk assessment

SIEM, GRC automation tools

Incident response & threat detection

Network & data security

Governance, Risk & Compliance (GRC) Analyst

Geekview Tek Solution, Frederick, MD

Designed and executed a robust compliance program, decreasing audit discrepancies by 30% and ensuring alignment with ISO 27001, SOC 2, and GDPR standards. Identified and evaluated organizational risks, leading to risk mitigation initiatives that cut overall exposure by 25%.

Maintained and updated over 200 security policies and procedures to ensure 100% compliance with evolving regulatory requirements.

Led quarterly security and compliance audits across departments, elevating audit success rate by 15% within 12 months.

Automated GRC workflows and reporting processes, increasing efficiency by 40% and providing real- time analytics for strategic decision-making.

Conducted security awareness training for more than 50 staff members, resulting in 98% compliance with mandatory policies and certification programs. Established and tracked KRIs to monitor risk trends, resulting in a 20% faster incident response time and improved threat detection.

Managed third-party vendor risk assessments for 30+ partners, reducing compliance issues by 35% and strengthening supply chain security.

Sep 2018 - Jun 2019

EDUCATION

BA. Accounting

Christian Service University College, Kumasi, Ghana. CERTIFICATIONS

Certified Information Systems Auditor (CISA).

Certified Information Systems Manager (CISM).

CompTIA Sec+



Contact this candidate