Summary
Overview
Work History
Education
Skills
Websites
Certification
Accomplishments
Work Availability
Quote
Timeline
OperationsManager
Alex Djom

Alex Djom

Cybersecurity and Compliance Professional
Ashburn,VA

Summary

A cybersecurity and compliance professional with 5 years of hands-on experience safeguarding sensitive data under the NIST, HIPAA, ISO 21700, SOX, and PCI-DSS frameworks. Proven expertise in identifying, assessing, and mitigating risks, developing robust processes, and implementing controls including access management, data loss prevention, encryption protocols, log monitoring, and cloud security best practices. Demonstrated a track record of delivering exceptional risk management support in fast-paced environments, ensuring the protection of large-scale payment cards and company assets. Eager to apply comprehensive security expertise to safeguard payment card systems and company assets effectively.

Overview

18
18
years of professional experience
2
2
Certification

Work History

Security Analyst

Highmark Health
12.2020 - 10.2023
  • Assisted in daily network traffic analysis using Splunk, our SIEM tool to identify anomalies and contribute to system integrity across 500+ machines, which increase early threat detection by 20%
  • Conducted monthly risk assessments on servers, applications and endpoints to identify security flaws ensuring thorough security evaluations and timely mitigation of potential threats
  • Ensured IT security controls align with NIST SP 800-53 and HIPAA standards, by evaluating current state security controls for compliance against the requirements specified in NIST SP 800-53 and HIPAA standards, resulting in a 10% improvement in security measures and a 15% reduction in noncompliance incidents
  • Used Qualys for regular vulnerability scans, resulting in removing over 5,000 security vulnerabilities per month by configuring and optimizing the Qualys Guard vulnerability scanner to identify system security flaws on critical systems, which reduced security risk and allowed the company to stay HIPAA compliant
  • Managed daily access control logs for over 50 employees by thoroughly reviewing access and events logs to identify action taken on computer systems such as electronic health record (EHR) systems, servers, printers and firewalls
  • Utilized pre- and post-assessment surveys, compliance audits, and employee feedback mechanisms to measure and track compliance awareness, resulting in a 25% increase aligned with HIPAA requirements
  • Served as the frontline responder for incident triage through ServiceNow, ensuring prompt assessment and validation within SLAs.

HR-Help Desk Support Administrator

Nestle
02.2018 - 11.2020
  • Streamlined onboarding processes and managed new hire equipment procurement
  • Trained and supported end-users in software, hardware, and network standards
  • Efficiently managed user accounts and email addresses for new hires
  • Collaborated with IT staff and vendors to ensure a smooth IT transition
  • Documented and reported incidents, requests, and user feedback
  • Managed and tracked employee inquiries using a ticketing system ensuring timely resolution and excellent customer service
  • Effectively triaged and prioritized tickets, ensuring critical incidents receive prompt attention
  • Ensured that departing employee’s IT assets, access, and data are appropriately managed during the offboarding process, including conducting exit interviews.

HR Compliance Specialist

Willis Towers Watson
11.2007 - 02.2018
  • Conducted audits to verify compliance with regulation requirements and company policies
  • Facilitated international assignments and supported the Global Mobility team
  • Developed and maintained HR policies and procedures for SOX (Sarbanes-Oxley Act) compliance requirements
  • Collaborated with internal and external auditors to ensure HR compliance with 100% SOX regulations
  • Led regular training sessions on compliance awareness and ethical practices to ensure employee’s understanding of compliance requirements
  • Contributed to the development and maintenance of ethical practices and data privacy standards within the HR Department.

Solutions Delivery Associate (Contractor)

PricewaterhouseCoopers LLC
01.2006 - 10.2007
  • Coordinated the Destination New Hire Orientation program for executives
  • Achieved a seamless onboarding experience for new hires through effective coordination and timely completion of onboarding tasks
  • Coordinated all training and travel arrangements for new hires, resulting in a 100% attendance rate for new hire orientation sessions.

Education

Bachelor’s degree - Human Resources Management

University of Douala - Cameroon
06.1998

Associate degree - Business Administration

The University Institute of Technology (IUT) – Bandjoun- Cameroon
06.1996

Skills

  • Security Knowledge
  • Encryption
  • Vulnerability Management
  • Security Information Event Management (SIEM)
  • Log Analysis
  • Stakeholder Relationships
  • Wireshark software
  • Deductive reasoning skills
  • Incident Response
  • Threat Intelligence
  • Network Security
  • Operating Systems
  • Malware Analysis
  • Incident Response Plan Implementation
  • Scripting
  • Cyber Threat Hunting
  • Bilingual: English-French
  • Problem-Solving
  • Organization and Time Management
  • Qualys Cloud Platform
  • Data security
  • Critical thinking skills
  • Excellent Communication
  • Cultural Awareness
  • Flexible and Adaptable

Certification

  • CompTIA Security+ SYO-601, 07/2022
  • SHRM-CP (Society for Human Resources Management Certified Professional), 12/2019

Accomplishments

  • Implemented a multifaceted strategy incorporating IOC analysis and employee training to combat phishing attacks, leading to a 50% reduction in successful attacks within six months and ensuring the security of healthcare assets and patient information.
  • We successfully used Qualys Guard to realign security protocols to meet healthcare standards, resulting in a 30% increase in HIPAA compliance and a 20% decrease in system vulnerabilities.
  • Developed and implemented security procedures to achieve a notable 40% improvement in HIPAA compliance and a 30% reduction in system vulnerabilities.
  • Collaborated with a team of five in the development of enhanced traffic analysis by utilizing tools like Splunk and conducting packet analysis using Wireshark, contributing to a 25% improvement in threat detection efficiency and a 20% reduction in incident response time.
  • Implemented efficient incident management using ServiceNow and consistently handled incidents, contributing to rapid mitigation of potential security risks and minimizing data loss in the event of an attack.
  • Conducted in-depth investigations of security breaches by emphasizing indicator of compromise (IOC) analysis for suspicious emails, implemented a strategy including enhanced email filtering techniques, and conducted regular employee training sessions on phishing identification. These efforts resulted in a commendable 50% decrease in successful phishing attacks within six months, effectively safeguarding healthcare assets and patient informationand demonstrating proactive measures and user awareness.

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Quote

"The proof of the pudding is in the eating"
Don Quixote

Timeline

Security Analyst

Highmark Health
12.2020 - 10.2023

HR-Help Desk Support Administrator

Nestle
02.2018 - 11.2020

HR Compliance Specialist

Willis Towers Watson
11.2007 - 02.2018

Solutions Delivery Associate (Contractor)

PricewaterhouseCoopers LLC
01.2006 - 10.2007

Bachelor’s degree - Human Resources Management

University of Douala - Cameroon

Associate degree - Business Administration

The University Institute of Technology (IUT) – Bandjoun- Cameroon
Alex DjomCybersecurity and Compliance Professional