Kena Harris
Midlothian,TX
Summary
As a highly skilled and experienced individual, possess a wide range of proven skills in developing risk and controls, implementing measures to safeguard organizations, audit, quality assurance, and project management/scrum. With a deep understanding of the mortgage, banking, and the insurance industry. Adept at conducting risk assessments, and implementing effective mitigation strategies. Expertise lies in managing network and system security, overseeing incident response protocols, and leading comprehensive risk audits. Excelled in collaborating with cross-functional teams to ensure compliance with industry regulations and best practices. With strong analytical and problem-solving skills, have successfully investigated and resolved complex security incidents. Also proficient in conducting compliance and risk awareness training to educate employees on safe computing practices. With a passion for staying ahead of evolving cyber threats, committed to maintaining the highest level of security posture for organizations.
Overview
21
21
years of professional experience
3
3
years of post-secondary education
Work History
Senior and Lead Project Test Manager
Randstad, Bank of America
06.2022 - 05.2023
- Manage project testing activities, ensuring high-quality testing efforts and compliance with integrated functional testing
- Organize, control, and ensure traceability and visibility throughout testing process
- Collaborate with cross-functional teams to define testing objectives, strategies, and deliverables
- Supervised testing of customer user experience when utilizing credit cards
- Ensure accountability and actively participate in all testing phases, including planning, data preparation, testing objectives, script creation, script execution, traceability, defect management, and implementation support
- Develop and implement comprehensive test plans, test cases, and test scripts to ensure thorough coverage of system functionality
- Lead and mentored team of test analysts, providing guidance and support to enhance their performance and professional growth
- Ensure projects comply with all Enterprise Testing standards
- Provide regular status updates on project test results to senior leaders/stakeholders through status reports
- Validate testing by cross-referencing epics in MLQC/ALM, Jira, and traceability matrix
- Coordinated with off-site staff to verify correct use of test procedures and confirm accurate reporting.
Information Security Officer
Clark University
Atlanta, GA
01.2023 - 04.2023
- Managed project testing activities to ensure high-quality testing efforts and compliance with integrated functional testing
- Conducted continuous monitoring of IT system to proactively identify and mitigate vulnerabilities and potential threats to security infrastructure
- Developed comprehensive protocols for detecting and neutralizing security threats within the company, prioritizing the safeguarding of sensitive data
- Ensured the regular maintenance and effective management of up-to-date anti-virus software to block and counteract emerging threats
- Took responsibility for vigilant monitoring of risk factors and compliance measures, fostering a secure environment for the organization
- Authored and maintained security plans in alignment with the NIST Framework, adapting them as needed to uphold evolving security standards
- Conducted thorough reviews of information security documentation for key applications, following Federal Departmental and agency guidelines
- This encompassed comprehensive assessments of System Security Plans, Security Risk Assessments, Contingency Plans, and Business Continuity Plans
- Regularly updated the DOL security controls policy and procedures, as well as enterprise security controls plans templates such as the Incident Response Plan and Contingency Plan
- Demonstrated expertise in validating testing efforts by cross-referencing epics in MLQC/ALM, Jira, and the traceability matrix, ensuring accurate and reliable test results.
Sr. Project Manager
K
FORCE
03.2021 - 06.2022
- Oversaw and coordinated security and operational resilience supervisory work across multiple portfolios, ensuring seamless execution and alignment with organizational objectives
- Managed thorough examinations of governance and controls for cybersecurity and operations risk management programs, IT operations, and management information systems
- Successfully implemented compliance improvements to enhance the development of internal departmental teams, fostering consistency and efficiency
- Led planning sessions and facilitated the production of workstream deliverables, driving collaborative efforts and ensuring timely project completion
- Collaborated closely with cross-functional teams to establish and maintain compliance standards, promoting a culture of adherence to regulatory requirements
- Conducted comprehensive assessments to identify compliance gaps and formulated effective strategies to address them, minimizing risks and strengthening compliance posture
- Led and actively participated in IT and security examinations, assessing the effectiveness of cybersecurity programs
- Developed actionable recommendations and ensured the validation of remediation efforts for identified issues, mitigating risks and enhancing overall cybersecurity resilience
- Demonstrated strong project management skills by effectively managing project timelines, resources & budgets, resulting in the successful delivery of compliance projects
- Tracked and reported on compliance metrics and key performance indicators (KPIs) to senior management, providing valuable insights for decision-making and continuous improvement
- Set milestones, monitored adherence to plans and schedules, and proactively addressed program risks through resource allocation or specification modifications
- Contributed to the management and maintenance of a robust change control process throughout project lifecycles, ensuring compliance and minimizing disruptions
- Led change management efforts to foster a culture of compliance and continuous improvement, engaging stakeholders and driving positive organizational change
- Conducted in-depth analyses, resulting in actionable recommendations and conclusions Proactively identified and monitored emerging cybersecurity risks and trends, contributing to the overall risk mitigation strategy
- Monitored contracts and service level agreements to identify potential risks and implement mitigation actions to protect development process from unforeseen delays and costs.
VP Regulatory Controls Compliance Officer
EBERLS Claim Services, State Farm
11.2015 - 03.2021
- Reported and escalated risks and control issues related to violations of laws or breaches of policies in property and casualty claims, ensuring prompt action was taken to address these concerns and maintain compliance
- Validated the effectiveness of remediation measures implemented to address reported issues, ensuring they were adequate and in alignment with regulatory requirements
- Functioned as a compliance risk officer within the Independent Compliance Risk Management Testing team, responsible for evaluating and assessing compliance risks and controls implemented by the first line of defense
- Conducted thorough assessments to identify potential compliance risks, employing proactive measures to mitigate and address any identified issues
- Collaborated with cross-functional teams to develop and implement comprehensive compliance strategies, ensuring adherence to regulatory guidelines and standards
- Assisted in planning, executing, and documenting compliance testing reviews and validations for a specific product component, function, or legal entity within a designated region, following State Plans
- Established and executed compliance testing, monitoring, and reporting programs within a designated region, adhering to the Compliance Testing (CT) Plan
Human Resources Analyst
Texas Army National Guard
Grand Prairie, TX
03.2015 - 03.2019
- Conducted comprehensive reviews and analyses of personnel records to ensure accuracy and compliance with regulations
- Managed and revised army records to ensure the accuracy of the information, compensation, withholdings, and National Guard status changes
- Contributed to disaster recovery efforts for Hurricane Harvey and Hurricane Ian
- Developed and implemented training programs to enhance the skills and knowledge of Guard members, resulting in improved performance and readiness
- Verified employment paperwork against army standards, ensuring completion and inclusion of necessary supporting documents
- Maintained confidential personnel files, ensuring proper documentation and adherence to privacy regulations
- Assisted in the preparation and submission of reports on personnel statistics, trends, and recommendations to support decision-making processes
- Provided guidance and support to Guard members regarding benefits, entitlements, and career development opportunities
- Ensured full organizational compliance with legal standards for EEO and ADA
AVP Compliance Quality Assurance Manager
Citigroup/CitiMortgage
Irving, TX
06.2011 - 11.2015
- Collaborated with Control and Emerging Risk officers to develop UAT and ETL test scripts, assess results, and investigate issues
- Proposed actionable plans to address system solution implementation based on test script analysis
- Led the department in reviewing tests of special projects and reviews for each group within the company
- Identified risks and promoted process improvement for Quality Assurance underwriting files, bankruptcy, and foreclosure processes
- Conducted thorough evaluations of control and risk management procedures, identifying areas for improvement
- Streamlined testing methodologies and developed standardized processes for quality assurance procedures
- Implemented best practices for UAT and ETL testing, resulting in improved efficiency and accuracy
- Guided various business units (Operations, Underwriting, Short Sale Department, Bankruptcy, and Risk) in understanding and applying new laws, regulations, and corporate policies, and recommended corrective actions
- Managed compliance for regulatory changes and new financial products/services by collaborating with the Vice President of compliance and regulatory counsel and relevant business units
- Contributed to the development of controls to enforce compliance, address past violations, and prevent future non-compliance, collaborating with Information Systems (IS), Operations, Marketing, Product, and Legal Departments
Petroleum Supply Specialist
Texas Army National Guard
Decatur, TX
08.2010 - 08.2012
- Participated in disaster recovery efforts following Hurricane Katrina, providing crucial support in the petroleum supply operations
- Resolved army transportation, logistics, and customer issues effectively, ensuring timely delivery of supplies and meeting delivery timelines
- Maintained and managed inventory of petroleum supplies, ensuring accurate record-keeping and efficient supply management
- Coordinated and executed fuel distribution operations, ensuring uninterrupted supply to military units and supporting their operational requirements
- Conducted routine inspections and maintenance of equipment and facilities, ensuring proper functioning and adherence to safety protocols
- Revamped operations through the integration of technology for route planning, driver management, and training
- Managed costs by carefully selecting, assessing, and reviewing logistics carriers
Compliance Quality Assurance Analyst
05.2009 - 05.2011
- Maintained professional cohesive relationships with Control and Emerging Risk officers to construct tests of controls, evaluate outcomes, and analyze resulting issues - recommending effective corrective action plans for implementation of system solutions.
- Worked leads, tests special projects and review for each group within company identifying risk and promoting process improvement for Quality Assurance underwriting files to ensure senior level compliance.
- Conducted compliance related monitoring procedures and reviewed to ensure all risks are identified, controls are effective and policies complied with Recommends and facilitates improvement/development of processes and procedures.
- Provided guidance to business units such Operations, Short Sale Department, Bankruptcy and risk, assessing and interpreting all new or changed laws, regulations and corporate policy, to determine impact on processes, procedures, and training - recommending effective corrective action plans to business.
- Manage compliance quality assurance for regulatory changes and new financial products and services by working closely with Vice President of compliance and regulatory counsel and applicable business units.
- Participate in state regulatory examination process, analyze regulatory examination findings to determine root cause of errors, and recommend and oversee corrective and preventive courses of action.
- Assist in development of controls to implement compliance related changes, remediate past compliance violations, and avoid potential compliance violations in future as part of a team with Information Systems (IS), Operations Marketing, Product, and Legal Departments.
- Manage consumer feedback portion of overall Compliance Management System, including auditing feedback, monitoring trends, and implementing risk-based review systems.
- Review company product documents, communications, training, and advertising materials for regulatory compliance issues.
- Enhance both District Manager and Internal Audit programs based upon issues that arise out of examinations, regulatory complaints, regulatory changes, new products, or other audit findings.
Assist in development and delivery of training to remediate compliance issues identified and to avoid future compliance violations ¤ Advise leadership on compliance trends and opportunities. - Maintain and update risk assessments, policies, and procedures.
Business Analyst
CitiMortgage
, State
05.2007 - 06.2009
- Collaborated with stakeholders to gather business requirements and translate them into actionable solutions, ensuring alignment with organizational goals and objectives
- Conducted thorough analysis of existing systems, processes, and workflows to identify potential vulnerabilities and risks, recommending appropriate cybersecurity controls and enhancements
- Developed functional specifications and user stories, guiding development and implementation of cybersecurity solutions and ensuring met business needs
- Facilitated communication and collaboration between technical teams and business stakeholders, bridging gap between risk and security requirements and operational objectives
- Conducted feasibility studies and impact assessments to evaluate viability and potential risks of proposed cybersecurity initiatives, providing insights and recommendations to support decision-making
- Collaborated with IT teams to define and implement cybersecurity measures, ensuring effective integration and alignment with existing systems and infrastructure
Risk & Controls Officer
AVP
, State
06.2005 - 06.2007
- Developed and implemented risk management frameworks and controls to mitigate cybersecurity risks, ensuring alignment with industry standards and regulatory requirements
- Conducted risk assessments and gap analyses to identify vulnerabilities and weaknesses in existing systems and processes, recommending appropriate controls and remediation measures
- Monitored and evaluated the effectiveness of implemented controls, conducting periodic assessments and audits to ensure ongoing compliance and risk mitigation
- Developed and maintained risk registers and risk management documentation, providing a comprehensive view of cybersecurity risks and mitigation strategies for senior management and stakeholders
- Engaged with internal and external auditors, providing expertise and guidance on cybersecurity controls and practices, facilitating successful audits and compliance assessments
- Developed and delivered risk and controls training programs for employees, promoting a strong understanding of risk management principles and fostering a risk-aware culture
Project Manager
, State
03.2002 - 05.2005
- Successfully led cross-functional teams in planning, execution, and delivery of cybersecurity projects, ensuring adherence to project timelines, budgets, and quality standards
- Managed multiple projects and continued to build reports with all stakeholders.
- Developed and implemented project management methodologies and best practices specific to cybersecurity initiatives, effectively managing project scope, risks, and resources
- Collaborated with stakeholders to define project objectives, requirements, and success criteria, aligning them with cybersecurity goals and organizational strategies
- Conducted comprehensive risk assessments and developed risk mitigation strategies, addressing potential cybersecurity threats and vulnerabilities throughout project lifecycle
- Managed vendor relationships and coordinated external resources, ensuring their effective integration into project activities and deliverables
- Monitored and reported project progress to key stakeholders, providing timely updates on milestones, issues, and risks, and implementing appropriate mitigation plans as needed
- Facilitated communication and collaboration between technical teams, cybersecurity experts, and business stakeholders, ensuring common understanding of project requirements and objectives
- Developed and maintained project documentation, including project plans, schedules, status reports, and change requests, ensuring accurate and up-to-date project information
- Conducted post-project evaluations and lessons learned sessions, capturing insights and recommendations to improve future cybersecurity projects and processes
- Stayed current with industry trends and best practices in cybersecurity project management, continuously enhancing knowledge and skills to drive successful project outcomes
Education
Some College (No Degree) - Certificate - Leading Human Resources
Macquarie University
Sydney Australia 09.2021 - 11.2021
Some College (No Degree) - Management Information Systems
The University of Arizona
Tucson, Arizona 08.2021 - 05.2024
Skills
Implementing security programs
undefinedTimeline
Information Security Officer
Clark University
01.2023 - 04.2023
Senior and Lead Project Test Manager
Randstad, Bank of America
06.2022 - 05.2023
Some College (No Degree) - Certificate - Leading Human Resources
Macquarie University
09.2021 - 11.2021
Some College (No Degree) - Management Information Systems
The University of Arizona
08.2021 - 05.2024
Sr. Project Manager
K
03.2021 - 06.2022
VP Regulatory Controls Compliance Officer
EBERLS Claim Services, State Farm
11.2015 - 03.2021
Human Resources Analyst
Texas Army National Guard
03.2015 - 03.2019
AVP Compliance Quality Assurance Manager
Citigroup/CitiMortgage
06.2011 - 11.2015
Petroleum Supply Specialist
Texas Army National Guard
08.2010 - 08.2012
Compliance Quality Assurance Analyst
05.2009 - 05.2011
Business Analyst
CitiMortgage
05.2007 - 06.2009
Risk & Controls Officer
AVP
06.2005 - 06.2007
Project Manager
03.2002 - 05.2005
Similar Profiles
MILAN SASMALMILAN SASMAL
Senior Software Engineer at Bank of America (Randstad Technologies)Senior Software Engineer at Bank of America (Randstad Technologies)
HYO-SUNG LOUMHYO-SUNG LOUM
Sr Manager, Business Transformation at Randstad North AmericaSr Manager, Business Transformation at Randstad North America
Mok Pui Yi SarahMok Pui Yi Sarah
Fund Accountant at JP Morgan Chase Bank N.A. (via Randstad Hong Kong Limited)Fund Accountant at JP Morgan Chase Bank N.A. (via Randstad Hong Kong Limited)