Overview
Work History
Education
Certification
Timeline
Generic

Fifi Ciabu-Mutombo

Triangle,USA

Overview

6
6
years of professional experience
1
1
Certification

Work History

Information Security Program ANALYST

Lifeline smart TECH
01.2023 - 11.2024
  • Conducted thorough control testing, reviews, and contributed to the development and maintenance of IT processes, standards, and tools, ensuring adherence to best practices and regulatory requirements
  • Collaborated effectively with users to assess data access needs, identify security threats, and recommend programming or process enhancements, enhancing overall security posture and user awareness
  • Revamped and managed Operational Risk procedural manuals, job aids, and tools to align with the latest best practices and regulatory standards, ensuring operational excellence and compliance
  • Applied SOC 1 & SOC 2 experience to ensure robust assurance over internal controls for data security and privacy, maintaining compliance with industry standards and regulatory frameworks
  • Executed security audits and vulnerability analyses, providing detailed reports and remediation plans to address identified weaknesses
  • Implemented SEC 500 guidelines to align operational practices with regulatory requirements, effectively managing information security and risk in accordance with state-specific standards
  • Developed and updated comprehensive risk metrics, facilitating accurate assessment and rating of risk categories, and provided strategic recommendations to address internal control concerns, ensuring proactive risk management and mitigation
  • Evaluate the adequacy of corrective actions from past assessment reviews and report on the status of recommendations during the Data Transfer or System exclusions recertification
  • Applied NIST 800-53 security and privacy controls to ensure comprehensive risk management and compliance across IT processes, enhancing organizational security posture
  • Coordinated cross-functional teams to align GIS risk governance activities with external sector efforts, ensuring seamless participation in industry partnerships, while meeting organizational goals.
  • Managed a comprehensive governance framework for information security risk, proactively addressing roadblocks and ensuring timely milestone delivery across multiple projects.

Financial Risk Analyst

KUWA CONSULTING
09.2020 - 11.2022
  • Oversaw the record retention of risk assessment documentation, including, data, scope, status, results, reports, corrective actions, and completion date
  • Delivered quality assurance procedures, guided training compliance, and mentored staff on best practices in risk management and compliance
  • Assisted in the development and upkeep of internal controls for financial reporting
  • Identifying gaps and recommend enhancements to improve financial integrity and compliance efforts
  • Monitored financial databases independently or with vendors to identify and rectify integrity issues promptly; implement and oversee proactive alerts for system issues
  • Ensured strict adherence to federal and state regulations, including NIST 800-53 and SEC 500, through comprehensive risk assessments, audits, and the implementation of effective risk governance frameworks
  • Conducted comprehensive reviews and analyses of risk, quality, service, and control metrics, leading to enhanced operational efficiency, effective risk mitigation, and rigorous control testing for ICFR and SOX compliance
  • Assisted in developing and maintaining internal controls for financial reporting based on NIST 800-53 guidelines, identifying gaps and recommending enhancements for improved financial integrity
  • Conducted thorough risk assessments to ensure strict adherence to federal and state regulations as well as industry standards
  • Oversaw risk assessment documentation and supported the development of strategic risk mitigation plans, ensuring timely deliverables and compliance with federal and state regulations.
  • Developed and communicated clear, concise risk reports to senior leadership and external partners, enhancing decision-making on governance and compliance matters.

Risk Analyst

Courtesy Healthcare Services
06.2018 - 07.2020
  • Enhanced office policies continually to align with administrative objectives, ensuring robust compliance and operational efficiency
  • Identified and investigated incident reports, providing accurate reporting to regulatory agencies as needed, demonstrating strong regulatory compliance expertise
  • Served as a trusted resource for Health system employees on risk management issues, including informed consent, documentation, and policy adherence, fostering a culture of compliance and best practices
  • Led information technology system audits and risk assessments, implementing AVATAR software to secure sensitive medical data, thereby enhancing data security protocols and minimizing potential liabilities
  • Oversaw the implementation of corrective actions, ensuring prompt remediation and adherence to regulatory requirements from government agencies
  • Developed and maintained risk metrics aligned with NIST 800-53 controls, facilitating accurate risk assessment and strategic recommendations for mitigating control weaknesses
  • Led investigations into control weaknesses, assessed risks, and ensured timely implementation of corrective actions
  • Executed security audits and vulnerability analyses in line with NIST 800-53 standards, providing detailed reports and actionable remediation plans to address identified weaknesses
  • Tracked and analyzed HR and security-related data, producing detailed reports to support departmental goals and initiatives
  • Created effective PowerPoint presentations to communicate analysis, risk assessments, and security updates to senior leadership, enabling informed decision-making.
  • Actively participated in external cybersecurity stakeholder groups, staying current on industry trends and integrating new best practices into internal policies.


Education

Juris Masters - Corporate Compliance And Regulations

Liberty University
Lynchburg, VA
05-2025

Bachelor of Arts - Political Science

Marymount University
Arlington, VA
12-2021

Certification

  • CompTIA Certification

Timeline

Information Security Program ANALYST

Lifeline smart TECH
01.2023 - 11.2024

Financial Risk Analyst

KUWA CONSULTING
09.2020 - 11.2022

Risk Analyst

Courtesy Healthcare Services
06.2018 - 07.2020

Juris Masters - Corporate Compliance And Regulations

Liberty University

Bachelor of Arts - Political Science

Marymount University

Similar Profiles

CREATE PROFILE
Fifi Ciabu-Mutombo