Security Analyst Cloud
Resume:
MAGLOIRE KEKOMBE
Plano Texas *************@*****.*** 214-***-****
Professional Summary
A highly dynamic and process-oriented Cybersecurity and Compliance professional with extensive expertise in PCI DSS 4.0 compliance, IT General Controls (ITGC), and cloud security frameworks. Proven ability to design and implement security controls, conduct PCI compliance assessments, and lead remediation efforts to align with industry regulations. Adept at collaborating with IT teams, stakeholders, and auditors to achieve seamless compliance. Strong knowledge of AWS security, microservices architecture, and payment card security. Holds CISSP certification and a master’s degree in information technology.
Core Competencies
PCI DSS 4.0 Compliance & Assessments
IT General Controls (ITGC)
Security Control Design & Implementation
AWS Security & Compliance Frameworks
Microservices Security
Regulatory Compliance (SOC 1, SOC 2, HIPAA)
Risk Assessment & Management
Security Documentation & Reporting
Cloud Security & Data Protection
Professional Experience
Security Analyst – Prodapt April 2024 – June 2025
Conducted PCI DSS 4.0 compliance assessments and identified security gaps, leading to a 20% reduction in non-compliance issues.
Designed and implemented security controls to mitigate PCI-related risks, including encryption policies and segmentation strategies.
Led PCI DSS remediation efforts, collaborating with IT teams and leadership to ensure timely issue resolution.
Served as the primary liaison with QSA auditors, managing evidence collection and compliance reporting.
Comprehensive PCI documentation develops, including policies, playbooks, and training materials for 50+ stakeholders.
Integrated AWS security frameworks into the PCI compliance process, strengthening cloud security posture.
Security Analyst – Altice USA Oct 2023 – March 2024
Designed detailed network and data flow diagrams for PCI DSS 4.0 compliance, ensuring proper scoping of the Cardholder Data Environment (CDE).
Led the implementation of security controls such as network segmentation, physical security, and administrative policies.
Conducted third-party risk assessments, ensuring vendors complied with PCI DSS, SOC 1, and SOC 2 requirements.
Cybersecurity GRC Analyst –Keks Enterprise April 2021-Sept 2023
Conducted third-party risk assessments for vendors, evaluating SOC 1 & SOC 2 reports to ensure regulatory compliance.
Led privacy compliance programs for HIPAA, HITECH, and PCI audits, collaborating with legal teams and auditors.
Managed incident response and security risk assessments using NIST CSF and CIS v8 frameworks, improving overall security posture.
PCI-DSS Specialist – Success Logistics Jan 2020 – March 2021
Spearheaded PCI DSS 4.0 compliance programs, ensuring full audit readiness and certification.
Managed over 15 PCI readiness assessments, identifying security gaps and overseeing remediation efforts.
Provided PCI compliance training to cross-functional teams, improving awareness and adherence to payment card security best practices.
Customized security awareness materials to address specific vulnerabilities within an organization, enhancing employee vigilance.
Developed and implemented strategies to enhance the organization’s knowledge management capabilities.
Coordinated with cross-functional teams to gather and organize information relevant to governance and compliance.
Maintained accurate records and documentation related to governance and knowledge management activities.
Assisted in the preparation of governance and compliance reports for internal and external stakeholders
Spearheaded development of comprehensive disaster recovery plan, preparing organization for efficient response to various cyber incidents.
Key Achievement: Utilized the NIST Cybersecurity Framework to overhaul the hospital’s security program, resulting in enhancements in security posture.
Education
Master of Science in Cybersecurity and Information Assurance – WGU University
Certifications
CISM
CompTIA Security+
CompTIA CySa+
CCNA
Contact this candidate