Belinda Effah
Manchester,CT
Summary
Highly motivated IT security professional with passion for cybersecurity. Known for ability to build strong customer relationships to understand requirements and deliver value-added solutions. Currently seeking an Information Security and Risk Analyst position in a growth-oriented organization with focus on: Governance, Risk and Compliance.
Overview
8
8
years of professional experience
Work History
Vendor Risk Analyst
Apple Bank
07.2018 - Current
- Third Party Risk Management of enterprise third party relationships including pre-contract screening, onboarding, InfoSec contract provision review, engagement risk assessment (ERA), and vendor termination
- Work with inherent risks to ensure adequate controls are in place to reduce control gaps, resulting in acceptable residual risks consistent with Securitas policies and procedures
- Coordinate with SOX and PMO business partners for in-scope vendors to ensure proper artifacts are obtained
- Review vendor performance related to Service Level Agreements (SLAs) and Key Performance Indicators (KPIs) and verify inclusion of these terms in contracts related to SaaS cloud and other business critical deployments that involve PII, PHI, and other mission critical suppliers
- Monitor, Review and Update SLA team’s control
- Maintains internal documentation library, ensuring that process and other documentation is regularly updated to reflect a latest operational processes and requirements.
HIPAA Compliance Specialist
Saint Barnabas Medical Center
05.2017 - 06.2018
- Practice of HIPAA law while confidentially handling patient’s private medical information and documents
- Review records once received to ensure completeness and contact hospital/facilities as necessary to verify information
- Efficiently and effectively, identify, evaluate, and manage, while addressing evolving regulatory requirements, Information and Privacy Protection
- Conducts HIPAA compliance investigations to determine if there is incident of non-compliance, unauthorized disclosure, or privacy breach has occurred
- Interview employees to ensure compliance with applicable laws and regulations.
SOX Compliance Analyst / Information Security Analyst
Target
04.2016 - 05.2017
- Performs IT Risk Assessment and documents system security controls
- Designs and conducts walkthrough, formulates test results and develops remediation plans for each area of testing
- Participates in t SOX testing of General Computer Controls
- Meets with IT team to gather evidence, develop test plans, test procedures and document test results and exceptions
- Develops Business Continuity Plan and relationship with outsourced vendors
- Information Security Policy - Works with teams of various departmental heads (HR, IT, Production etc.) and CISO / ISSO in drafting Information Security Policy and compliance guidelines
- Evaluation of Key IT Processes - Evaluates clients' key IT processes such as change management, systems development, computer/data center operations and managing security at database, network, and application layers
- Deep understanding of ISO 27001, PCI, NIST SP 800-171, NIST Risk Management Framework (RMF), and NIST Cybersecurity Framework (CSF)
- Assist with developing and maintaining new security policies, procedures and guidelines that allowed greater standardization and more effective management of information security measures.
- Frequently inspected production area to verify proper equipment operation.
- Evaluated customer needs and feedback to drive product and service improvements.
- Supported creation of detailed, technical financial models to value potential acquisition targets.
- Assessed data modeling and statistics to integrate high-level business processes with data rules.
- Supported legal teams in investigations involving cyber crime or data breaches, providing crucial technical expertise.
Education
Bachelor of Science - Accounting
University of Ghana
Accra03.2011
Certified Information System Auditor (CISA)
CRISC (Pending)
Skills
- Statistic analysis
- Audit Support
- InfoSec
- Risk Analysis
Languages
English
Elementary
Timeline
Vendor Risk Analyst
Apple Bank
07.2018 - Current
HIPAA Compliance Specialist
Saint Barnabas Medical Center
05.2017 - 06.2018
SOX Compliance Analyst / Information Security Analyst
Target
04.2016 - 05.2017
Bachelor of Science - Accounting
University of Ghana
Certified Information System Auditor (CISA)
CRISC (Pending)
Similar Profiles
Damien ContarinoDamien Contarino
Assistant Team Lead at Apple BankAssistant Team Lead at Apple Bank
Maame Ama GyawuMaame Ama Gyawu
(AVP) Vendor Risk Management Analyst at Apple Bank(AVP) Vendor Risk Management Analyst at Apple Bank
Jazmín Alexandra Cépedes SueroJazmín Alexandra Cépedes Suero
Assistant Manager at Apple BankAssistant Manager at Apple Bank
SHAMAR BENJAMINSHAMAR BENJAMIN
Branch Manager at Apple BankBranch Manager at Apple Bank
Mario EvangelistaMario Evangelista
Transportation Area Manager at Amazon.com Fulfillment CenterTransportation Area Manager at Amazon.com Fulfillment Center