It Risk Database Security
Resume:
JEREMY HUTCHINS
**** ******** *****, **********, ** 45220
Phone: 513-***-**** Email: ******.********@*****.*** LinkedIn: [Add Profile]
PROFESSIONAL SUMMARY
Results-driven IT Risk Analyst & Database Security Specialist with extensive experience in security audits, risk assessments, compliance reporting, and database security. Proven ability to evaluate and implement security controls, enforce data governance policies, and work with auditors to ensure regulatory compliance (NIST, ISO 27001, SOC 2). Adept at IT risk management, security monitoring, and vulnerability assessments with a strong foundation in database administration (SQL Server, Oracle, Teradata).
Key Expertise:
IT Risk & Compliance (NIST, SOC 2, ISO 27001, HIPAA)
Security Audit Reviews & Risk Assessments
Governance, Risk, and Compliance (GRC) Reporting
Database Security & Access Control Management
Incident Response & Vulnerability Management
Change Management & IT Controls
Security Policy Development & Implementation
CERTIFICATIONS & EDUCATION
B.B.A., Management Information Systems – University of Cincinnati, 1999
Pursuing: CISA (Certified Information Systems Auditor) – ISACA *(Expected [Month, Year])*
PROFESSIONAL EXPERIENCE
Owner / Operator Outback Painting Co. Cincinnati, OH 2020 – Present
- Managed all aspects of small business operations, including budgeting, contracts, and risk assessment.
- Developed project management workflows, ensuring timely and cost-effective project completion.
- Implemented process documentation and compliance measures for business operations.
- Negotiated contracts and managed client relationships, ensuring customer satisfaction.
- Supervised and trained a team, enforcing workplace safety and quality standards.
SQL Server Database Developer / Administrator
Bottom Line Systems – Crescent Springs, KY 2014 – 2019
- Conducted security audits, user access reviews, and compliance reporting for database environments across 250+ systems.
- Implemented database security enhancements, ensuring compliance with HIPAA, SOC 2, and internal IT risk policies.
- Defined, evaluated, and enforced access control measures to protect sensitive data.
- Designed backup and disaster recovery strategies, reducing data loss risk by 40%.
- Conducted change management risk assessments, ensuring smooth implementation of security patches and system upgrades.
- Assisted auditors in security assessments and internal compliance reporting.
Oracle Database Administrator / Banner ERP Security Lead
Xavier University – Cincinnati, OH 2010 – 2014
- Led security audit reviews, ensuring compliance with ISO 27001 and NIST frameworks.
- Defined security policies for user authentication, access control, and data encryption.
- Conducted database vulnerability assessments to mitigate risks in Banner ERP systems.
- Managed security-related change management processes, collaborating with auditors to meet IT risk requirements.
- Developed policies for security incident response & remediation.
Oracle Database Administrator / IT Risk & Compliance Support
Accenture – Cincinnati, OH 2007 – 2010
- Managed database security and compliance for enterprise systems, ensuring alignment with IT risk management policies.
- Conducted security assessments on production environments, identifying vulnerabilities and mitigating risks.
- Collaborated with internal auditors to ensure adherence to IT governance frameworks (COBIT, NIST, SOC 2).
- Assisted in implementing security controls for role-based access management (RBAC).
GRC SKILLS & TOOLS
GRC Frameworks & Compliance: NIST 800-53, ISO 27001, SOC 2, HIPAA, COBIT
Security Tools: Splunk, Nessus, Qualys, ServiceNow GRC, Archer
Database Security: Oracle, SQL Server, Teradata – User access controls, encryption, data integrity
Risk Management: Threat modeling, vulnerability assessments, IT security policies
Contact this candidate