Hi, I’m
Darryl Danoo
Princeton,Texas
Summary
Cybersecurity professional with strong expertise in identifying, assessing, and mitigating risks. Proven track record of developing and implementing strategic security measures that safeguard organizational assets. Strong focus on team collaboration and driving results, adapting seamlessly to evolving challenges. Skilled in threat analysis, incident response, and compliance with regulatory standards. Known for reliability and flexibility in high-stakes environments.
Overview
11
years of professional experience
1
Certification
Work History
Kapitus
Cyber Risk Analyst
01.2024 - Current
Job overview
- Prepared detailed reports on findings from risk assessments, facilitating communication between technical and non-technical stakeholders.
- Presented findings from risk assessments at executive-level meetings, helping inform decisions on security strategy and policy direction.
- Contributed to the development of business continuity and disaster recovery plans, ensuring organizational resilience in the face of potential cyber incidents.
- Developed and implemented cybersecurity strategies for improved protection against cyberattacks.
- Identified potential threats and vulnerabilities through regular system audits, reducing the likelihood of breaches.
- Collaborated with IT teams to incorporate best practices in securing network infrastructure and applications.
- Review compliance activities associated with continuous monitoring and risk scoring
- Developed and provided guidance regarding cybersecurity policies, standard operating procedures, and best practices for system development life cycle (SDLC), networking, and server management
VikingCloud
INFORMATION SECURITY CONSULTANT
01.2022 - 01.2024
Job overview
- Communicate and enforce security policies, procedures, and safeguards for all systems and staff, based upon PCI DSS standards
- Work with Software engineers to develop and implement security requirements
- Work with the project team on implementing the defined policies within the PDCI DSS Compliance
- Creates-drafts, enhance, and adopt the information security policies and standards with the needs of business segments
- (NIST, PCI DSS, CIS Critical Security Controls)
- Create a cross functional program around the NIST privacy framework
- Performs Audit and other related IT reviews (NIST, PCI DSS)
- Analyze and advise on the risk and the remediation of security issues based on reports from vulnerability assessments scanners, patch management tools, and emerging threat information
Lynk Remote Technologies
IT CLOUD SECURITY & Compliance ANALYST
04.2020 - 12.2021
Job overview
- Work with the project team on implementing the defined policies within the AWS (IAM) solutions cloud infrastructure
- Identifying and evaluating the risks during review and analysis of system development life cycle (SDLC), which includes the design, testing /QA and implementation of systems and upgrades
- Work with Software engineers to develop and implement security requirements
- Participate in development of roadmaps and participate in the standards process for AWS (IAM) solutions
- Maintain and Execute AWS Cloud Information security strategy to proactively identify risk and drive remediation
- Develops and maintain System Security Plan (SSP)
- Integrate GRC practices into existing IT entities and their policies and procedures to ensure compliance and reduce risk factors
Yehowa Medical Services
INFORMATION SECURITY ANALYST/ AUDITOR
08.2018 - 03.2020
Job overview
- Develop, review, and update Security Assessment Plan documentation using Federal Certification and Accreditation (C&A) processes
- Communicate and enforce security policies, procedures, and safeguards for all systems and staff, based upon NIST
- Perform HIPAA audits and other related IT reviews (NIST, PCI DSS) as prescribed in the annual plan
- Assisted project teams in the implementation of security measures to meet corporate security policies and external regulations (HIPAA, NIST)
- Analyze and update Risk Assessment (RA), Privacy Impact Assessment (PIA), System Security Plan (SSP), System Security Test and Evaluation (ST&E) and the Plan of actions and Milestones (POA&M)
- Provide advisory services in risk assessments, analysis, acceptance and threat modeling as necessary to meet business and IT demands
Cru Property Management
INFORMATION SECURITY ANALYST
06.2016 - 08.2018
Job overview
- Analyze and update Risk Assessment (RA), Privacy Impact Assessment (PIA), System Security Plan (SSP), System Security Test and Evaluation (ST&E) and the Plan of actions and Milestones (POA&M)
- Develop information security risks and vulnerabilities assessments and applied security controls to assure confidentiality, integrity and availability of information systems and associated data to limit their impact on the information and information systems
- Conduct IT security controls risk assessment that includes reviewing organizational policies, standards and procedures and provide advice on their adequacy, accuracy and in compliance with the Payment Card Data Security Standard (PCI DSS)
- Conduct self – annual assessment (NIST 800 53A.)
- Verify proper privacy complaints or program gaps requiring solutions
Nationwide Credit Corp
INFORMATION SECURITY ANALYST
02.2014 - 04.2016
Job overview
- Conducted IT controls risk assessments that included reviewing organizational policies, standards, procedures and guidelines
- Identify weakness in the internal controls and opportunities to enhance operational efficiencies
- Perform HIPAA audits and other related IT reviews (NIST, PCI DSS) as prescribed in the annual plan
- Maintained appropriate security documentation for applications and systems
- Developed security control test plans and conducted in-depth security assessments of information systems that evaluate compliance of administrative, physical, technical, organizational and polices safeguards in order to maintain HIPAA compliance
Education
University of Maryland, College Park, College Park, MD
Bachelor of Science from Information Technology
05-2013
Montgomery College, Takoma Park, MD
Associate of Science from Computer And Information Systems
12-2011
Skills
- Compliance management
- Security architecture
- Application security
- Security policy development
- Incident response
- Privacy protection
- Cybersecurity expertise
- Cloud security
- Incident response management
- Risk assessment
- Compliance monitoring
- Software deployment
- Programming languages
- Cybersecurity frameworks
- Excellent communication
- Organizational skills
- Quality assurance
- Developing security plans
- Security testing
Certification
- Certified Information Security Manager (CISM) - ISACA.
- CompTIA Security+ - CompTIA.
- Amazon Web Services (AWS) Certified Solutions Architect
- Project Management Professional (PMP)
- Microsoft Certified, Azure Security Engineer Associate - Microsoft.
- Certified Information Systems Auditor (CISA)-ISACA
- Qualified security Assessor (QSA) PCI SSC
Timeline
Cyber Risk Analyst
Kapitus
01.2024 - Current
INFORMATION SECURITY CONSULTANT
VikingCloud
01.2022 - 01.2024
IT CLOUD SECURITY & Compliance ANALYST
Lynk Remote Technologies
04.2020 - 12.2021
INFORMATION SECURITY ANALYST/ AUDITOR
Yehowa Medical Services
08.2018 - 03.2020
INFORMATION SECURITY ANALYST
Cru Property Management
06.2016 - 08.2018
INFORMATION SECURITY ANALYST
Nationwide Credit Corp
02.2014 - 04.2016
- Certified Information Security Manager (CISM) - ISACA.
- CompTIA Security+ - CompTIA.
- Amazon Web Services (AWS) Certified Solutions Architect
- Project Management Professional (PMP)
- Microsoft Certified, Azure Security Engineer Associate - Microsoft.
- Certified Information Systems Auditor (CISA)-ISACA
- Qualified security Assessor (QSA) PCI SSC
University of Maryland, College Park
Bachelor of Science from Information Technology
Montgomery College
Associate of Science from Computer And Information Systems
Similar Profiles
SELASSIE DANOOSELASSIE DANOO
QA. Engineer at KapitusQA. Engineer at Kapitus
Praveen KumarPraveen Kumar
Senior Data Scientist at KapitusSenior Data Scientist at Kapitus
R YuvarajR Yuvaraj
Senior Credit Underwriter at Kapitus Strategy Services Private LimitedSenior Credit Underwriter at Kapitus Strategy Services Private Limited