Security Officer Regulatory Compliance

Nikkia Slade

Newport News, VA Phone: (C) 757-***-**** *********@*****.***

linkedin.com/in/nikkiaslade

PROFESSIONAL SUMMARY

Active DoD Secret Clearance. Information Security Officer with 5+ years of experience driving vulnerability remediation, regulatory compliance, and secure configuration management across complex enterprise environments. Expert in DISA STIG implementation, RMF/ATO documentation, and security control validation. Skilled at bridging technical teams and auditors to ensure systems meet federal cybersecurity standards, reduce risk, and maintain operational readiness. Adept at developing POA&Ms, authoring System Security Plans, and coordinating vulnerability mitigations with cross- functional teams to improve compliance metrics and strengthen security posture. CORE COMPETENCIES

• Vulnerability Management & Remediation Coordination

• DISA STIG Implementation & Compliance Validation

• Identity & Access Management (IAM)

• Infrastructure & Network Security

• Plan of Action & Milestones (POA&M) Development

• Regulatory Compliance & Audit Readiness

• Risk Management Framework (RMF) & ATO Process

• Security Documentation (SSP, SAR, CMP)

• Security Incident Response Planning

• Secure Configuration Management

• Threat & Vulnerability Assessment

• Security Control Implementation & Monitoring

WORK EXPERIENCE

• IBM Hampton, VA

Security Compliance Officer Oct 2020 – Present

• Analyze applications to demonstrate compliance with state and federal policies, addressing gaps by writing policies for audit compliance.

• Collaborate with global developers, rapidly analyzing requirements, and aligning solutions with client needs.

• Process artifacts required to obtain and maintain the Authority to Operate (ATO) for information systems.

• Interpret and update STIG checklists or SCAP Compliance Checker (SCC) reports.

• Develop and implement plans incorporating updates as guidance and threats change.

• Collaborate with SOC, TDM, SDM, and clients to remediate findings.

• Increase vulnerability & compliance reporting frequency, improving metrics for success measurement.

• Utilize ServiceNow to document and manage problems, work requests, and resolutions.

• Support security-related customer milestones and assessments, enhancing satisfaction.

• Perform DISA STIG implementation assessments on IT applications and platforms to ensure compliance.

• Enforce compliance with CM policies and procedures for hardware/software authorization.

• Design and lead tabletop exercises to improve incident readiness.

• Knight Federal Suffolk, VA

Cyber Defense Specialist July 2020 – Oct 2020

• Implemented proactive and reactive security measures to ensure operational availability.

• Supported warfighter training events, identified firewall rule sets, and analyzed security logs.

• Produced network security configuration status reports, logging and documenting all issues.

• Falconwood Suffolk, VA

Validator / Package Submitting Officer Aug 2019 – June 2020

• Conducted quality assurance reviews for A&A packages and risk assessments.

• Reviewed ACAS scans to identify vulnerabilities for all NAVIFOR commands.

• Maintained real-time status of authorization packages using Navy DIACAP and RMF tools.

• Developed POA&Ms in response to reported vulnerabilities.

• Prioritized systems in the checkpoint queue based on mission criticality.

• Huntington Ingalls Shipbuilding Newport News, VA Nuclear Aircraft Carrier Technician Mar 2011 – Aug 2019

• Disassembled reactor heads, replaced nuclear material, and reassembled reactor components under strict safety protocols.

• Led high-risk crane lifts and refueling operations using precision measurement instruments.

• Investigated and documented recurring discrepancies, providing corrective actions.

• Performed audits and preventive maintenance on reactor plant controlled material.

• Developed documentation and installation procedures for refueling processes.

• Assisted in creating Security Management Processes, Risk Analysis Plans, and IT Disaster Recovery Plans.

EDUCATION & CERTIFICATIONS

• A.S., Associate of Science – Louisburg College, Louisburg, NC

• B.A., Sports Management – George Mason University, Fairfax, VA

• CompTIA Advanced Security Practitioner (CASP+)

• CompTIA Security+ CE

• Cybersecurity Fundamentals

• Think Like a Hacker

• Red Hat Certified System Administrator (RHCSA) – In Progress (Expected Completion: 2025)

TECHNICAL SKILLS

Operating Systems: Windows 7/10, Mac OS X

Security Assessment / Monitoring Tools: Splunk, SolarWinds, Wireshark, ACAS, Nessus, QRadar, TrendMicro, eMASS, ServiceNow (Vulnerability Response) Virtualization: VMware, Oracle VM

Contact this candidate