EDWARD WILLIAMS
Cherry Hill,US
Summary
Cybersecurity Compliance Analyst with 5+ years of hands-on experience enforcing security policies, conducting vulnerability assessments, and managing compliance frameworks within DoD and federal environments. Proven expertise in continuous monitoring, incident response, privileged account management, and security control implementation. Skilled in vulnerability scanning tools, SIEM platforms, and endpoint security monitoring with demonstrated ability to reduce security risks and maintain compliance postures across enterprise systems.
Overview
6
6
years of professional experience
1
1
Security+
1
1
CySA+
Work History
Cybersecurity Analyst
DSA
01.2024 - 08.2025
- Conduct comprehensive cyber risk assessments and vulnerability analysis for 15+ DoD space and
ground systems, identifying and prioritizing 200+ vulnerabilities quarterly using ACAS scanning tools - Enforce cybersecurity policies and compliance requirements by preparing and managing ATO documentation in eMASS, ensuring 100% adherence to RMF Steps 1-6 and NIST 800-53 control families
- Monitor system logs and endpoints continuously to detect anomalies, achieving 98% uptime for mission-critical systems through proactive threat identification
- Manage privileged account reviews and access control validations, reducing unauthorized access incidents by 40% through systematic quarterly audits
- Collaborate with engineering teams to troubleshoot and remediate critical vulnerabilities in real-time, resolving high-priority STIG findings within 24-48 hours to prevent accreditation delays
- Develop and maintain continuous monitoring plans and security documentation (POA&M;, SSP, SAP) for 8 concurrent system authorization packages
- Support incident response activities by analyzing security events, coordinating remediation efforts,
and documenting lessons learned for process improvement
Information Assurance Analyst
Mclaughlin Research Corporation
03.2021 - 12.2023
- Maintained RMF accreditation across 12 DoD systems processing sensitive data, ensuring continuous
compliance with NIST 800-53 security controls and achieving zero failed audits over 3-year period - Managed eMASS system records for multiple authorization boundaries, conducting monthly SCAP scans that identified and tracked 500+ security findings annually
- Developed and executed POA&M; remediation strategies, reducing open vulnerabilities by 35% within 6 months through systematic prioritization and stakeholder coordination
- Performed continuous monitoring activities including quarterly security control assessments, log reviews, and configuration compliance checks for mission-critical enterprise systems
- Enforced security policies by troubleshooting access control vulnerabilities and implementing PPSM-compliant firewall rules, reducing unauthorized system exposure by 30%
- Conducted vulnerability scanning operations using ACAS/Nessus, analyzing scan results and providing technical remediation guidance to system administrators
- Authored and validated 8 complete RMF authorization packages (SSP, SAP, SAR, POA&M;), securing on-time ATO approvals with zero rework requests
- Supported compliance checks by documenting security controls, validating STIG implementations, and maintaining artifact repositories for audit readiness
Cybersecurity Analyst
NJOIT
04.2019 - 02.2021
- Conducted statewide vulnerability assessments across 50+ government agency systems, scanning 1,000+ assets quarterly and recommending prioritized remediation strategies that reduced critical findings by 45%
- Deployed and monitored IDS/IPS solutions across enterprise network infrastructure, analyzing 10,000+ security alerts monthly to detect and respond to network intrusions
- Monitored security logs and endpoint data using centralized SIEM platform, investigating suspicious activities and escalating 50+ confirmed security incidents annually
- Responded to SOC alerts within 15-minute SLA, conducting real-time investigations and coordinating incident response activities with IT teams
- Enforced security policies by performing endpoint compliance checks, identifying 200+ non-compliant
systems, and coordinating remediation efforts with asset owners - Managed privileged account lifecycle activities including periodic access reviews, ensuring compliance with least privilege principles across 300+ administrator accounts
- Isolated and contained malware outbreak affecting 25+ workstations by implementing emergency endpoint hardening measures and coordinating forensic analysis, minimizing downtime to 4 hours
- Documented security incidents and developed standardized response procedures, improving mean-time-to-resolution by 25%
Junior Information Security Analyst
Shapeways
07.2018 - 02.2019
- Supported SIEM deployment and configuration (Splunk) for enterprise environment, improving incident visibility and threat detection capabilities across 500+ endpoints
- Conducted initial vulnerability scans using Nessus and DISA STIG checklists, identifying 150+ security weaknesses and tracking remediation progress through ticketing system
- Performed system hardening activities by applying DISA STIGs to Windows and Linux servers, reducing attack surface and improving security baseline compliance scores by 20%
- Monitored security logs daily for indicators of compromise, investigating anomalies and documenting findings for security team review
- Partnered with IT teams to develop and document incident response playbooks for phishing, malware, and insider threat scenarios, standardizing response procedures
- Assisted with compliance checks by validating security control implementations and maintaining evidence documentation for audit purposes
- Supported privileged account management by documenting access requests and conducting periodic reviews of administrative permissions
Education
BACHELOR OF SCIENCE (B.S.) - CYBER SECURITY
Capella University
Minneapolis, MNSkills
- Compliance Frameworks: NIST RMF NIST 800-53 DISA STIGs FedRAMP HIPAA ISO 27001
PCI DSS COBIT DoDI 851001 - Security Tools: eMASS ACAS/Nessus SCAP Splunk IDS/IPS Vulnerability Scanners Endpoint Security Solutions
- Operating Systems: Windows Server Linux/Unix Network Infrastructure
Skills: Vulnerability Assessment Log Monitoring Incident Response Policy Enforcement Privileged Account Management Security Control Assessment Continuous Monitoring Risk Analysis Documentation Technical Communication
Certification
- CompTIA Security+
- CySA+
- CISSP (in progress)
Timeline
Cybersecurity Analyst
DSA
01.2024 - 08.2025
Information Assurance Analyst
Mclaughlin Research Corporation
03.2021 - 12.2023
Cybersecurity Analyst
NJOIT
04.2019 - 02.2021
Junior Information Security Analyst
Shapeways
07.2018 - 02.2019
BACHELOR OF SCIENCE (B.S.) - CYBER SECURITY
Capella University
CORE COMPETENCIES
- Cybersecurity & Compliance: RMF (Steps 1-6) | NIST 800-53 Controls | DoDI 8510.01 | DISA STIGs |
FedRAMP | HIPAA | ISO 27001 | PCI DSS - Vulnerability Management: ACAS | SCAP | VRAM | Vulnerability Scanning & Remediation | Security
Control Assessment - Security Operations: Incident Response | SIEM (Splunk) | IDS/IPS | Endpoint Monitoring | Log Analysis
| Privileged Account Management - Tools & Platforms: eMASS | Splunk | Network Security Monitoring | Cloud Security Fundamentals
Documentation: Security Policies | POA&M; | SSP | SAP | Incident Response Playbooks | Compliance
Reporting
Similar Profiles
Linda StoneLinda Stone
Disability Support Worker at DSADisability Support Worker at DSA
Diana LaughlinDiana Laughlin
X-Ray Technologist at DsaX-Ray Technologist at Dsa
Terrion WalkerTerrion Walker
DSP at DSADSP at DSA
Cynthia AshlockCynthia Ashlock
Digital Marketing Specialist at Boldstone Media, LLCDigital Marketing Specialist at Boldstone Media, LLC
Colin CostelloColin Costello
Outside Sales Intern at The Commencement GroupOutside Sales Intern at The Commencement Group