Gloria Obeng
Dumfries,VA
Summary
Detail-oriented third party risk and compliance analyst with five years of experience conducting vendor risk and security assessment. Knowledgeable in identifying and mitigating inherent and residual risk implementing appropriate controls. Well-versed in using Governance risk and compliance tools reviewing security controls and accompanied artifacts. Worked with different industry specific privacy and cybersecurity framework and standards ensuring vendor regulatory compliance.
Overview
8
8
years of professional experience
1
1
Certification
Work History
Vendor Risk and Compliance Analyst
Capital City
Sterling , VA
12.2021 - Current
- Facilitate vendor onboarding process by performing third party risk assessment of vendors.
- Perform vendor risk assessment reviews according to pre-established policies and procedures managing multiple reviews in parallel.
- Review completed Standardize Information Gathering (SIG) questionnaire and supporting documentation to validate vendor appropriate implementation of security controls.
- Responsible for evaluation Service Organization Report (SOC) Reports and Standardize Information Gathering (SIG) questionnaires to make sure it complies with the company's control requirements.
- Assess Vendor Risk Profile to determine confidentiality, integrity and availability (CIA) and privacy rating of vendors.
- Analyzed portfolios and identified risk factors, facilitating reduction of delinquencies on new volumes and recommending risk-adverse underwriting strategies.
- Investigated allegations to check validity and recommend actions to minimize risk.
- Developed and controlled execution of reporting and analytics for multiple operations departments.
- Reviewed contracts and agreements to identify potential risks and ideal mitigation strategies.
Vendor Risk Analyst
Lollicash
Richmond , Virginia
01.2017 - 09.2021
- Reviewed completed Standardized Information Gathering questionnaires based on vendor inherent risk.
- Conducted data classification which facilitated vendor scoping/tiering.
- Provide analysis and recommendations for identified security exceptions; participate in defining remediation efforts
- Responsible for developing third party related internal policies and procedures for my company.
- Performed periodic security and compliance gap assessments on new and existing systems, processes, and technologies in accordance with applicable industry standard framework such as NIST, COBIT, and CSF.
- Drives remediation activities from identification, plans preparation and closure. Ensures accountability with respect to the Service Level
- Assisted vendors in understanding security controls and evidences needed for the controls.
- Manage and maintain the Vendor Management repository with up to date vendor information including but not limited to due diligence documentation, contracts, vendor policies and procedures
- Instituted contingency plans, ensuring business continuity through cross-training, documentation and data backups.
- Developed short-term goals and long-term strategic plans to improve risk control and mitigation.
Scrum Master
Tophub
Norfolk , Virginia
01.2016 - 09.2018
- Collaborated with product owners, team members, technologists and other scrum masters to define solutions and drive progress.
- Researched emerging technologies and current trends to stay knowledgeable in methods that could benefit Scrum team.
- Anticipated impediments to team delivery involving cultural barriers and logistical challenges.
- Planned Agile best practices and encouraged team cohesion, overcoming impediments and hurdles to productivity.
- Coached teams in Agile practices and provided necessary training to create positive mindset to Agile methodologies.
- Managed product backlog and supported Scrum framework for monthly sprint releases.
- Worked effectively with multiple Scrum teams both internally and off-shore.
- Led sprint reviews, daily scrums and planning meetings to realize full team engagement.
- Shielded scrum team from external interference for optimal productivity and success of Agile process.
- Planned and arranged meetings with external organizations and individuals, enabling parties to meet and discuss project progress.
- Assessed each scrum team member's responsibilities and delegated tasks to balance each employee's workload.
- Facilitated Scrum framework – sprint planning, backlog grooming, daily scrums, sprint reviews and sprint retrospectives.
Education
Bachelor Of Science - Mathematics
Kwame Nkrumah University of Science And Technology
Ghana, West Africa 06.2010
Skills
- Strong writing skills and ability to proofread vendor contracts and other correspondence to identify errors in content, spelling and grammar
- Ability to speak professionally and effectively with vendors representative and vendors
- Proficient verbal and written communication skills, including ability to effectively lead discussions and meetings
- Highly organized, ability to work to tight corporate deadlines, whilst under pressure without compromising accuracy
- Working knowledge of MS Office suite such as Excel and Powerpoint
- Teamwork
- Complaint Management
- Privacy Compliance
- Intuit QuickBooks
Certification
- Certified Information Systems Auditor (CISA)
- Comptia security +
- Professional Scrum Master (PSM)
Timeline
Vendor Risk and Compliance Analyst
Capital City
12.2021 - Current
Vendor Risk Analyst
Lollicash
01.2017 - 09.2021
Scrum Master
Tophub
01.2016 - 09.2018
Bachelor Of Science - Mathematics
Kwame Nkrumah University of Science And Technology
Similar Profiles
Angellica HindsAngellica Hinds
Direct Support Professional at Capital CityDirect Support Professional at Capital City
GLORIA OBENGGLORIA OBENG
Vendor Risk and Compliance Analyst at Capital CityVendor Risk and Compliance Analyst at Capital City
Rachel StarkRachel Stark
BDC Agent at Capital City HondaBDC Agent at Capital City Honda
Christian AwuahChristian Awuah
Community Manager at Independent CollaborationCommunity Manager at Independent Collaboration
Renita HarrisRenita Harris
Sales Associate at MCCS Package StoreSales Associate at MCCS Package Store