Open To Work
ADWOA NKRUMAH DJISAM
LAUREL,USA
Summary
IT professional with experience in IT Audit, governance, risks, & compliance, information security assurance, analysis and administration. Knowledge in vulnerability management, security control implementation, assessment and authorization, POA&M management, continuous monitoring, and Risk Management Framework (RMF). Dynamic professional with the ability to adapt well to changing environments and interact well at all levels. Proven ability to lead and direct, solve problems creatively, and make strategic decisions in fast paced environments.
Overview
11
11
years of professional experience
3
3
Certification
Work History
Security Analyst/Audit Liaison
Delviom LLC
07.2025 - 09.2025
- Federal Emergency Management Agency (FEMA)
- Facilitate program readiness for internal assessments and external audits.
- Coordinate, and track all aspects of A-123 Assessments, Financial Statements Audit, GAO Audits, and DHS OIG FISMA Audits.
- Liaise between groups and functions internal to FEMA and the external entities who audit them. This includes coordination of Provided by Client (PBC) Requests, facilitation of audit meetings, and performance of quality assurance reviews of artifacts prior to submission to auditors/assessors.
- Review and provide auditors feedback on draft Notice of Finding and Recommendations (NFRs).
- Route final NFRs for FEMA leadership signatures and distribute signed NFRs to appropriate stakeholders.
- Conduct IT Audit Preparation, NFR Overview, PBC Tracker, and NFR Remediation trainings to help CFO Designated System staff prepare for audits and improve IT General Control (ITGC) competency to support compliance and remediation efforts.
- Lead audit walkthrough preparation meetings to assist process owners in preparing for system walkthroughs/interviews.
- Proactively identify potential issues and develop solutions prior to external auditor testing to avoid audit findings.
- Monitor, track, and report remediation efforts for assessment and audit findings to FEMA and DHS Leadership
- Collaborated with IT teams to develop comprehensive cybersecurity strategies, reducing risks from external attacks.
- Work with process owners and stakeholders to develop client deliverables and identify opportunities for improving process documentation to include reviewing and updating policies and procedures.
- Assisted in the successful completion of security audits, resulting in a boost of client trust and confidence.
IT Risk and Controls Senior Consultant
Guidehouse LLP
04.2021 - 07.2025
- Federal Emergency Management Agency (FEMA)
- Facilitate program readiness for internal assessments and external audits.
- Manage a group of five audit liaisons in coordinating, and tracking all aspects of A-123 Assessments, Financial Statements Audit, GAO Audits, and DHS OIG FISMA Audits.
- Liaise between groups and functions internal to FEMA and the external entities who audit them. This includes coordination of Provided by Client (PBC) Requests, facilitation of audit meetings, and performance of quality assurance reviews of artifacts prior to submission to auditors/assessors.
- Review and provide auditors feedback on draft Notice of Finding and Recommendations (NFRs).
- Route final NFRs for FEMA leadership signatures and distribute signed NFRs to appropriate stakeholders.
- Conduct IT Audit Preparation, NFR Overview, PBC Tracker, and NFR Remediation trainings to help CFO Designated System staff prepare for audits and improve IT General Control (ITGC) competency to support compliance and remediation efforts.
- Lead audit walkthrough preparation meetings to assist process owners in preparing for system walkthroughs/interviews.
- Proactively identify potential issues and develop solutions prior to external auditor testing to avoid audit findings.
- Identified key areas in need of improvement and implemented plans to rectify issues.
- Assist process owners in creating Plan of Action and Milestones (POA&M) or Corrective Action Plans to track remediation of assessment and audit findings.
- Monitor, track, and report remediation efforts for assessment and audit findings to FEMA and DHS Leadership
- Work with process owners and stakeholders to develop client deliverables and identify opportunities for improving process documentation to include reviewing and updating policies and procedures.
- Administrative Office of the United States Courts
- Built strong relationships with clients through consistent communication and proactive problem-solving efforts.
- Perform assessments of IT controls using federal information assurance laws, regulations, industry-standard guidance such as FISCAM, FISMA, and NIST SP 800 series, etc. as part of financial statement audit readiness.
- Develop tools and templates including Risk and Control Matrices (RCMs) and test plan templates for assessing the design and effectiveness of IT General Controls (ITGCs) and application-level controls.
- Participate in walkthrough interviews and maintain communication with a variety of client stakeholders, including system personnel.
- Request, obtain, review, and analyze a variety of artifacts to assist in executing IT controls testing such as System Security Plans (SSPs), polices, standard operating procedures (SOPs), system screenshots, and system configuration settings.
- Evaluate the design of IT controls using provided artifacts, industry-standard guidance, leading best practices, and professional judgement.
- Plan and execute day-to-day activities of IT assessments individually and for the team.
- Provide subject matter expertise to client personnel and all matters relating to IT controls and respond to ad-hoc IT control requests from client personnel.
- Work with process owners and stakeholders to develop client deliverables and identify opportunities for improving process documentation
- Mentored junior consultants, helping them enhance their skills and contribute more effectively to projects.
- Delivered high-quality solutions for clients through comprehensive research and analysis of industry trends.
Information Assurance Analyst
SwiftLearn IT Solutions
11.2014 - 04.2021
- United States Department of Agriculture
- Review and update policies and procedures, SOPs, and SSPs
- Develop, document and review Security Assessment Plans (SAPs), Plan of Action and Milestones (POA&M) and Security Assessment Plans (SARs).
- Conduct kick-off meetings with SMEs, System Owners, and other assessors to identify the assessment scope, system boundaries information and confirm system’s security categorization
- Prepare and review authorization packages (i.e., SSP, SAP, SAR, POA&M, etc.) for Low, Moderate and High impact systems.
- Support the preparation of security test plans, execute and assess the security control effectiveness using security control test procedures, and create Security Assessment Reports (SAR) based on assessment findings.
- Conduct security controls assessment of applicable security controls to ensure compliance per NIST 800-53 Rev.4 requirements
- Assist in developing a Security Control Assessment (SCA) strategy for the organization; to include an overall assessment process flow, which documents the steps required to conduct assessment activities and interact with all necessary parties.
- Provide POA&M support to ensure mitigations are completed or the teams are working to mitigate all vulnerabilities in a timely fashion and within customer policy timeframe.
- Perform continuous monitoring to ensure implemented security controls remain functional throughout the lifecycle of the information system.
- Performed risk analyses to identify appropriate security countermeasures.
- Participate in meetings with stakeholders to present assessment findings and recommendations for remediation
- Prepare authorization package for management review and final Authorization to Operate (ATO).
Education
Master of Science - Curriculum and Instruction
McDaniel College
Westminster, MDBachelor of Science - Elementary Education
Morgan State University
Baltimore, MDSkills
- FISCAM
- NIST Special Publication Series
- FISMA
- FIPS 199/200
- Risk Management Framework
- GAO Green Book: Standard for Internal Control in the Federal Government
- GAO Yellow Book: Government Auditing Standards
- OMB A-123 Circular Compliance
- System Security Plan
- Continuous Monitoring
- Assessment and Authorization
- Certification & Accreditation (C&A)
- Security Assessment Report (SAR)
- Security Assessment Plan (SAP)
- Plan of Action & Milestones (POA&M)
- Risk mitigation
Certification
- CompTIA Security+
- Certified in Governance, Risk, and Compliance (CGRC)
- AWS Certified Cloud Practitioner
Languages
English
Native or Bilingual
Twi
Full Professional
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Timeline
Security Analyst/Audit Liaison
Delviom LLC
07.2025 - 09.2025
IT Risk and Controls Senior Consultant
Guidehouse LLP
04.2021 - 07.2025
Information Assurance Analyst
SwiftLearn IT Solutions
11.2014 - 04.2021
Master of Science - Curriculum and Instruction
McDaniel College
Bachelor of Science - Elementary Education
Morgan State University
Similar Profiles
ASIF SAIYEDASIF SAIYED
Business Intelligence Analyst at Delviom LLC/Fidelity InvestmentsBusiness Intelligence Analyst at Delviom LLC/Fidelity Investments
Stacey MangumStacey Mangum
Store Manager at Gunsmoke Firearms LLC Formerly Hi-Caliber LLCStore Manager at Gunsmoke Firearms LLC Formerly Hi-Caliber LLC
Emma LuvianoEmma Luviano
Billing Manager at KDT LLC & KIDS DC, LLCBilling Manager at KDT LLC & KIDS DC, LLC
Sasha UrenaSasha Urena
Medical Receptionist at University of Maryland OrthopaedicsMedical Receptionist at University of Maryland Orthopaedics
GLENDA RIVERA Ed.DGLENDA RIVERA Ed.D
Content Writer at Editorial Panamericana, Inc.Content Writer at Editorial Panamericana, Inc.