Ama Agyemang
Bowie,MD.
Summary
A results-driven cybersecurity analyst, with a comprehensive background of working with diverse teams in achieving organizational goals. Specialized in areas such as Risk Assessment, Vulnerability Management, Technical Writing, SSP and Policy writing. Skilled in conducting vulnerability assessments, security control assessment, and security audits to ensure compliance with industry standards and regulations such as NIST RMF, ISO27001, PCI DSS, and NIST CSF.
Well versed in performing vendor risks assessment through the review of SIG questionnaires, SOC 2, and various artifacts.
Overview
4
4
years of professional experience
1
1
Certification
Work History
Cybersecurity Risk Associate
Nana LLC
03.2023 - Current
- Performs network vulnerability scans using Tenable Nessus
- Installed personal and network printers for small office
- Managed relationships with third-party intrusion detection system providers.
- Collaborated with third-party payment card industry (PCI) compliance partners.
- Developed and maintained incident response protocols to mitigate damage and liability during security breaches
- Spearheaded bring your own device program, defining necessary security parameters and designing complementary security deployments
- Designed company-wide policies to bring operations in line with Center for Internet Security (CIS) standards
Jr. Security Analyst
Info Tech Advisors Institute Inc
11.2021 - 12.2022
- Created security assessment plan (SAP), and conducted kickoff meeting with stakeholders in preparation of PCI-DSS security assessments
- Conducted Internal self-assessment of systems using NIST CSF and security controls from NIST 800-53 and CIS controls
- Reviewed systems security policy and procedures such and recommended necessary corrections and updates
- Developed POAMs for tracking current issues affecting various applications and processes
- Single handedly created system security plan (SSP) for various systems in small company utilizing SP-800-18
- Installed splunk on smaller scale to track device logs
- Performed and reviewed Nessus vulnerability scans, and worked with technical team to install patches
- Developed, tested and implemented security policies, plans and procedures for organizational protection
- Recommend improvements in security systems and procedures
Compliance Analyst
Phoenix Insurance Corp
08.2019 - 03.2021
- Assist in day-to-day support of organization’s vendors, including vendor lifecycle from business engagement, vendor identification, vendor due diligence risk assessment, and periodic monitoring and termination
- Conducts information security program reviews of vendors to evaluate any critical risks
- Responsible for supporting organization’s Vendor Security program, from initial onboarding, continuous monitoring, and offboarding
- Reviewed audit and monitoring reports related to consumer and client activities.
- Developed improvement and corrective action plans to bring operations in line with requirements.
- Prepared documentation and records for upcoming audits and inspections.
- Supported and trained customers on compliance-related issues.
Education
MBA - Applied Information Systems
Towson University
Towson, MD05.2024
Bachelor of Arts - Political Science and Information
University of Ghana
Ghana11.2014
Bootcamp - Cybersecurity
Immersion Tech
Maryland08.2021
Skills
- Tenable Nessus Scanner
- Splunk 720
- NIST Cybersecurity Framework,SOC2,
- Compliance Risk Management
- Critical Thinking
- Plan of Actions & Milestones (POA&M)
- PCI DSS, ISO 27001
- TCP/IP
- Excel (including advanced functions like VLOOKUP), Word, PowerPoint
- Familiarity and knowledge of fundamental security/ IT concepts ( retention, data classification, change management, access control, asset management, third party risk
Certification
- CISA - Certified Information Systems Auditor
- Security+
Timeline
Cybersecurity Risk Associate
Nana LLC
03.2023 - Current
Jr. Security Analyst
Info Tech Advisors Institute Inc
11.2021 - 12.2022
Compliance Analyst
Phoenix Insurance Corp
08.2019 - 03.2021
MBA - Applied Information Systems
Towson University
Bachelor of Arts - Political Science and Information
University of Ghana
Bootcamp - Cybersecurity
Immersion Tech
Similar Profiles
ANNY ELIZABETH LEÓN HERNáNDEZANNY ELIZABETH LEÓN HERNáNDEZ
General Manager at Details By Nana LLCGeneral Manager at Details By Nana LLC
Connor KalwiczConnor Kalwicz
Wedding Server/Maintenance Assistant at Nana Enterprise, LLCWedding Server/Maintenance Assistant at Nana Enterprise, LLC
Lori O'MaliaLori O'Malia
Contracts / Risk Manager at NANA Worley, LLCContracts / Risk Manager at NANA Worley, LLC
Jennifer L. RossJennifer L. Ross
Director of Education Initiatives at Johns Hopkins University and MedicineDirector of Education Initiatives at Johns Hopkins University and Medicine
Aracely GaitanAracely Gaitan
House Manager at Aracely Maids ServicesHouse Manager at Aracely Maids Services