Christian Marshall
Summary
Accomplished and performance-oriented professional with comprehensive experience in system governance, network security and windows server administration. Pivoting into a career to become an Internal Security Assessor for various frameworks, security standards, and internal controls to help organizations prepare for audits and assessments.
Overview
4
4
years of professional experience
1
1
Certification
Work History
Compliance Monitoring and Testing Specialist
Likewize Corp.
07.2023 - 05.2024
- Partnered with compliance executives and various stakeholders to lead successful PCI DSS Audits and ensure that controls are adequate to protect sensitive information systems
- Coordinated with audit and technical owners to earn PCI service level 1 certification for the company
- Created global monitoring and testing scripts to perform accurate testing for all technical controls (PCI, ITGC, SOC 1 & SOC 2)
- Spearheaded all monitoring and testing activities in compliance Auditboard auditing tool to validate the effectiveness of internal controls
- Coordinated meetings with all Technical, System, and Process Owners to gather evidence to validate PCI DSS, ITGC, SOC 1 and SOC 2 controls for audits and reassurance
- Led GRC Training's for Monitoring and Testing activity operations to meet compliance, ensure awareness of risks, policies and standards, which led to successful control validations and audits
- Headed risk assessment discovery projects to determine the sensitivity and impact of all processes and controls
- Coordinated closely with Legal, Accounting team, Human Resources, and Customer Care Department to coordinate readiness assessments against various frameworks.
Cybersecurity Consultant
Baxter Clewis Consulting
12.2022 - 05.2023
- Collaborated with a team of security consultants to provide the client with a prioritized road map of controls to implement to achieve PCI DSS compliance for level One PCI DSS Service Providers
- Performs detailed security inspections of Linux and Windows Server configurations to ensure compliance with PCI DSS requirements
- Develops processes and procedures to help quickly identify non-compliant systems, reducing remediation time across the company
- Assists clients develop system configuration standards to reduce security vulnerabilities and system deployment time
- Established a successful reporting system to collect evidence and track goals for accurate remediation.
Account & Data Specialist
Thomson Reuters
12.2021 - 12.2022
- Helped prevent network security threats by verifying policies and procedures that secured storing and managing credentials for online and offline applications
- Helped review audit trials and correlating actions that could indicate threats or breaches to company systems by verifying log maintenance policies and procedures
- Developed and implemented organizational security policies and procedures for Internal and external user account accessibility
- This reduced security risk and allowed the company to be PCI Compliant
- Collaborated with internal stakeholders to meet crucial deadlines for validating internal controls
- Led analysis efforts to minimize the exposure of Sensitive Authentication Data and Cardholder Data to minimize business impact, protect organizational reputation, and ensure regulatory compliance.
Technical Support
ConnextPay
10.2020 - 03.2021
- Led analysis efforts for changing vendor supplied defaults for system passwords, resulting in improved security and reduced risk of malicious attacks
- Led internal assessments to analyze company credit card data to minimize the exposure of Sensitive Authentication Data and Cardholder Data to protect personal information and ensure regulatory compliance
- Implemented organizational security policies and procedures to reduce the risk of malicious attacks on Point-of-Sale systems
- Coordinated security awareness training that ensured monitoring of video cameras and access control mechanisms to sensitive areas, resulting in a decrease of security threats and improved compliance with security policies and procedures.
Education
Bachelors, Sports Management -
Dallas Baptist University
Grand Prairie, TX05.2015
Skills
- Collaboration and communication
- Test Data Management
- Test script writing
- Requirements Analysis
- Test Process Improvement
- Quality Assurance Principles
- Agile Methodology Familiarity
- Stakeholder Communication
- Problem-Solving
- Time Management
- Test Documentation
- Quality Control
- Quality testing
- Quality Control and Assurance
- Continuous Improvement
Certification
PCI DSS – Payment Card industry Data Security Standard Professional, 2023
Area Of Expertise
- PCI
- SOC 1 & SOC 2
- ITGC
- ISO 27001
- HIPAA
- Cisco Firewalls
- IPS/IDS
- Multi-Factor Authentication
- Cryptography
- PAN Scan
- Information Security Policy
- Vulnerability Management
- Application Security
- Risk Management
- IAM
- Patching and Remediation Management
- Controls Testing & Monitoring
Timeline
Compliance Monitoring and Testing Specialist
Likewize Corp.
07.2023 - 05.2024
Cybersecurity Consultant
Baxter Clewis Consulting
12.2022 - 05.2023
Account & Data Specialist
Thomson Reuters
12.2021 - 12.2022
Technical Support
ConnextPay
10.2020 - 03.2021
Bachelors, Sports Management -
Dallas Baptist University
Similar Profiles
Manjuri T VManjuri T V
Accountant at LIKEWIZE CORPORATIONAccountant at LIKEWIZE CORPORATION
Inirida Sineiry Silva PinedaInirida Sineiry Silva Pineda
Production Associate II at LikewizeProduction Associate II at Likewize
Donald MinkDonald Mink
Director of Reverse Operations & Engineering at LikewizeDirector of Reverse Operations & Engineering at Likewize
Sulakshi Dimasha Rathnayake MudiyanselageSulakshi Dimasha Rathnayake Mudiyanselage
Compliance Monitoring and Testing Specialist at Abu Dhabi Islamic BankCompliance Monitoring and Testing Specialist at Abu Dhabi Islamic Bank
Killian Tafadzwa ChikombeKillian Tafadzwa Chikombe
Compliance Officer – Monitoring & Testing at People's Own Savings Bank (POSB)Compliance Officer – Monitoring & Testing at People's Own Savings Bank (POSB)