Dony Joel Ojie Dongmo
Third-Party Risk Security Analyst | GRC Analyst
Dallas,TX
Summary
Experienced Third-Party Risk and GRC Analyst with expertise in conducting comprehensive risk assessments in the financial, healthcare, and retail sectors. Skilled in developing and executing governance, risk, and compliance strategies, with a strong focus on third-party risk management and regulatory compliance. Proficient in evaluating vendor risk, mitigating potential threats, and ensuring alignment with industry standards and frameworks such as NIST CSF and ISO 27001. Adept at enhancing cybersecurity policies and maintaining secure, compliant business operations.
Overview
7
7
years of professional experience
3
3
Certifications
Work History
Third-Party Risk Security Analyst
Nix Healthcare System
05.2021 - Current
- Conducts Third-Party Risk Assessments using the client’s Risk Assessment framework
- Identifies and recommends measures to manage and mitigate risks, reducing potential security impacts
- Monitors and reports on new and emerging security risks, contributing to enterprise risk remediation strategies
- Documents third-party issues for the Issue Management Team’s attention
- Tracks outstanding risks with third parties and internal stakeholders, supporting Enterprise Risk Register processes
- Works on risk-related projects, conducting assessments to identify operational, reputational, financial, and compliance risks
- Evaluates and quantifies the potential impact of risks, developing appropriate mitigation strategies
- Supports the Third-Party Risk Program Manager in implementing policies, guidelines, and tools required for the program
- Maintains the third-party inventory, risk assessments, contracts, action plans, and compliance documentation
Cybersecurity Specialist
Wayfair Retail
03.2018 - 04.2021
- Developed and implemented PCI-DSS compliance strategies, achieving and maintaining full compliance status
- Conducted AI compliance assessments and DPIAs for new retail technologies, reducing data breach risks by 20%
- Implemented SIEM solutions and real-time monitoring, reducing incident response time by 50%
- Led disaster recovery planning efforts, resulting in a 75% reduction in downtime during outages
- Enhanced asset management processes, increasing asset visibility and control by 15%
- Conducted regular compliance audits to ensure adherence to industry standards and regulations
- Successfully executed NERC CIP assessments, ensuring compliance with critical infrastructure protection standards
- Developed security policies to minimize risks and vulnerabilities
- Led a team in implementing PCI DSS standards as part of the organization's risk management strategy
- Interpreted regulatory requirements into technical specifications to strengthen the GRC program
- Participated in external audits to mitigate risks and ensure compliance
Education
Bachelor of Science - Project Management
Warsaw School Of Business (WBS)
Warsaw, PL 05.2001 -
Bachelor of Legal Study - English Common Law
University of Yaounde 2
Skills
- NIST & ISO 27001 Compliance
- Vulnerability Management
- Incident Response & SIEM
- Identity & Access Management (IAM)
- Risk Assessment & Third-Party Risk Management
- Policy Development & Compliance Audits
- Threat Intelligence & Asset Management
- eGRC Solutions (RiskRhino, RSA Archer, ServiceNow GRC)
- SOX, PCI DSS, Regulatory Requirements
- IT Security
- Network Security
- Data Integrity
- External Audits
- Audit Procedures
- Analytical Thinking
- Attention to Detail
- Time Management
Certification
CISM | Certified Information Security Manager
Additional Information - Title
Third-Party Risk Security Analyst | GRC Analyst
Timeline
Third-Party Risk Security Analyst
Nix Healthcare System
05.2021 - Current
Cybersecurity Specialist
Wayfair Retail
03.2018 - 04.2021
Bachelor of Science - Project Management
Warsaw School Of Business (WBS)
05.2001 -
Bachelor of Legal Study - English Common Law
University of Yaounde 2
Similar Profiles
Gbemisola KennethGbemisola Kenneth
Third Party Risk Security Analyst at Nix Healthcare SystemThird Party Risk Security Analyst at Nix Healthcare System
Gbemisola KennethGbemisola Kenneth
Third Party Risk Security Analyst at Nix Healthcare SystemThird Party Risk Security Analyst at Nix Healthcare System
Gbemisola KennethGbemisola Kenneth
Third Party Risk Security Analyst at Nix Healthcare SystemThird Party Risk Security Analyst at Nix Healthcare System
Charmagne N. GelseyCharmagne N. Gelsey
Payroll Conversion Consultant at EmpowerPayroll Conversion Consultant at Empower
Hope RodriguezHope Rodriguez
Claims Adjuster at GEICOClaims Adjuster at GEICO