Barbara B. Smith
Lake Buena Vista,FL
Summary
Dynamic professional with extensive experience as a Business Analyst at KForce, excelling in Cybersecurity Risk Management and compliance audits. Proven ability to enhance security protocols and streamline processes, leveraging strong communication and critical thinking skills to drive successful project outcomes. Committed to delivering innovative solutions in fast-paced environments.
Overview
11
11
years of professional experience
1
1
Certification
Work History
Certified Nursing Assistant (CNA)
Home Care Recharged and First Light Home Care
Ocala, Florida
01.2023 - Current
- Provided accredited nursing assistance to seniors throughout the Ocala, FL area using:
- Strong communication skills with clients and physicians, problem solving, critical thinking and attention to detail.
Business Analyst / Technical Writer
KForce, Longview Technology, B3, Veterans Engineering and CareFirst
01.2015 - 01.2023
- Performed and communicated Risk Assessments, maintained the Risk Register and audited compliance with HIPPA.
- Authored Policies and Procedures for compliance with HITRUST Certification.
- Implemented cloud security by editing technical documents in AWS and Azure.
- Partnered with Senior IT staff on all SDLC phases to create, test and launch new nationwide online software.
Education
MBA -
The American University
Washington, D.C.Skills
- Cybersecurity Risk Management
- Cybersecurity Audit
- Asset Management
- Identity and Access Management (IAM)
- Security Education and Awareness
- Data Loss Protection (DLP)
- Incident Response
- Third Party Risk Management
- NIST Framework
Certification
- ISO/IEC 27001 Lead Auditor Certification, 06/25
- Cybersecurity Governance, Risk, and Compliance Mastery, 06/25
- CompTIA Security+ Certification, 09/25
- Google Cyber Security Certification, 05/25
- Qualys Vulnerability Management Foundation and Vulnerability Management Detection and Response, 06/25
- Project Management Professional (PMP), 11/10
Practical Grc Projects
- Completed the ISO 27001 Lead Auditor training through GRC Mastery by building a full ISMS from scratch, including developing risk assessments, the Statement of Applicability, and drafting all core security policies and procedures required for certification.
- Conducted an end-to-end cyber security maturity assessment using NIST CSF framework as part of Cyber Security GRC Mastery training course.
- Conducted a third-party risk assessment on a supplier as part of Cybersecurity GRC Mastery training course. The assessment consisted of reviewing a third-party security assessment questionnaire, assessing, and summarizing the key risk items identified.
- Asset Management: Designed a process to capture assets and maintain a CMDB as part of Cyber Security GRC Mastery training course.
- Conducted an enterprise wide NIST Cybersecurity assessment and ISO 27001 Case Study, GRC Mastery.
Timeline
Certified Nursing Assistant (CNA)
Home Care Recharged and First Light Home Care
01.2023 - Current
Business Analyst / Technical Writer
KForce, Longview Technology, B3, Veterans Engineering and CareFirst
01.2015 - 01.2023
MBA -
The American University