Summary
Overview
Work History
Education
Skills
Clearance level currently held:
Certification
Timeline
Generic

Jessica Tomassi

Chattanooga,TN

Summary

Information security professional with six years experience currently open to new job opportunities. Skilled in threat analysis, risk management, and incident response. Strong focus on team collaboration and adaptability to meet evolving security challenges. Open to relocation.

Overview

6
6
years of professional experience
1
1
Certification

Work History

Information Security Engineer

Monster Worldwide Inc.
02.2022 - Current
  • Managed Bug Bounty Reporting program for company.
  • Executed coordination of penetration tests with third-party vendors. Remediated discovered vulnerabilities.
  • Directed and implemented annual training on Secure Coding for Developers.
  • Conducted monthly DAST scans of web apps.
  • Understand and utilize the CVSS, CVE, OWASP, and other valuation scoring for vulnerabilities.
  • Conducted technical investigations of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
  • Represented company's technical security interests to partners to provide bi-directional flow of technical information and best practices in information security.
  • Evaluated emerging technologies, staying current on industry best practices and trends in information security.
  • Conducted vulnerability assessments to identify potential risks within the organization''s infrastructure.
  • Leveraged various tools, such as Crowdstrike, Invicti, Rapid7, Microsoft Defender, Splunk, Confluence, AWS, Azure, JIRA and Oort.

Information System Business Analyst

Karthik Consulting LLC
12.2020 - 06.2022
  • Addressed challenges collaboratively during team discussions.
  • Developed high-quality documentation to support training efforts, helping employees fully understand new systems and procedures.
  • Performed gap analysis between existing systems or processes and desired state, identifying areas for improvement or enhancement.
  • Improved business processes by analyzing current practices and recommending optimization strategies.
  • Developed guidelines for secure information handling.
  • Developed and implemented information security standards and procedures
  • Guaranteed adherence to RMF SA-14 guidelines across all stakeholder information systems.
  • Conducted priority evaluations of project elements to assess importance and impact.
  • Guided stakeholders through the criticality analysis process.
  • Utilized eMASS information to finalize criticality analysis.
  • Knowledge of NIST 800-53 rev 4 security controls
  • Top Secret clearance

Information Systems Security Officer (Contractor)

BAE Systems
03.2020 - 12.2020
  • Collaborated with IT teams to integrate security best practices into system development and operations.
  • Maintained compliance with industry standards such as ISO 27001, NIST, and SOC2 by enforcing strict protocols and controls.
  • Coordinated with external partners and vendor during joint cybersecurity initiatives or investigations.
  • Ensured regular evaluations of system security.
  • Conducted quarterly SCAP scans utilizing updated DISA STIGs.
  • Mitigated risks identified in audits.
  • Applied expertise in security auditing and tracking mechanisms.
  • Assisted ISSM with annual self-inspections and system certification testing
  • Secret Clearance

Information Systems Security Officer

Raytheon, Inc. IDS
01.2019 - 03.2020
  • Executed and reviewed weekly security audits
  • Utilized security auditing and tracking tools
  • Ensured RMF compliance
  • Met DSS requirements
  • Worked on 10 differing classified Information System environments
  • Presented security awareness trainings to new hires
  • Led Assured File Transfer (AFT) trainings to new Data Transfer Agents (DTAs)
  • Working knowledge of NIST 800-53 and CNSSI requirements, general computer system functions, technical security safeguards, and operational security measures
  • Assisted ISSM with annual self-inspections and system certification testing
  • Secret Clearance

Education

Bachelor of Science - Cyber Security And Information Assurance

Norwich University
Northfield, VT
12-2018

Skills

  • Vulnerability assessment
  • Identity and Access management
  • Operating system hardening
  • Threat intelligence analysis
  • Security information and event management
  • Application security
  • Incident response
  • Data loss prevention
  • Insider threat analysis

Clearance level currently held:

Active Top Secret

Certification

  • CompTIA Security+ - CompTIA.

Timeline

Information Security Engineer

Monster Worldwide Inc.
02.2022 - Current

Information System Business Analyst

Karthik Consulting LLC
12.2020 - 06.2022

Information Systems Security Officer (Contractor)

BAE Systems
03.2020 - 12.2020

Information Systems Security Officer

Raytheon, Inc. IDS
01.2019 - 03.2020
  • CompTIA Security+ - CompTIA.

Bachelor of Science - Cyber Security And Information Assurance

Norwich University

Similar Profiles

  • Pao Kue

    Pao KuePao Kue

    Data Entry Clerk at MonsterData Entry Clerk at Monster

    View Profile
  • Jayden Gamble

    Jayden GambleJayden Gamble

    Lead Crew Member at Monster Mini GolfLead Crew Member at Monster Mini Golf

    View Profile
  • Zachary Carlson

    Zachary CarlsonZachary Carlson

    Lead Arborist at Monster Tree Service Of The Northwest SuburbsLead Arborist at Monster Tree Service Of The Northwest Suburbs

    View Profile
Jessica Tomassi