Maame Adwoa Bentum
Blacklick,Ohio
Summary
Versatile cyber security professional with repeated accomplishments investigating all types of cyber security incidents and breaches impacting service, people, and business. Adept at security assessment and authorization, risk management, and vulnerability management. Experienced in cybersecurity risk management and its impact on an organization’s information Systems Confidentiality, Integrity, and Availability triad. Equally capable of collaborating effectively with high-performing teams or working independently to enhance performance and increase reliability. With (5) years of progressive experience and demonstrated skill identifying business risks and compliance issues and designing proactive solutions.
Overview
7
7
years of professional experience
1
1
Certification
Work History
SECURITY CONTROL ASSESSOR
WORLDWIDE CONSULTING SEVERN MD
Severn, MD
11.2019 - Current
- Schedule kick-off meetings with system owners to help identify assessment scope, system boundary, and information system's category and attain any artifacts needed in conducting assessment
- Create Requirement Traceability Matrix (RTM) and document whether controls being assessed passed or failed using NIST SP 800-53A as guide
- Develop Security Assessment Plans (SAPs) and Conduct assessment of security control selections on various Moderate impact level systems to ensure compliance with NIST SP 800-53A Rev 4 Conduct security control interview meetings and Artifact gathering meetings with various stakeholders using assessment methods of interview, examination, and testing
- Document assessment findings in a Security Assessment Report (SAR) and recommend remediation actions for controls that failed and vulnerabilities
- Review A&A package items using NIST guidance for FISMA compliance such as the System FIPS 199 Categorization, e-Authentication Assessment, PIA, Contingency Plan (CP) and Contingency Plan Test (CPT) Perform vulnerability assessment of information systems to detect deficiencies and validate compliance using POA&M tracking tool
- (CSAM) Request scans and later review the scan results for common vulnerabilities such as missing patches, weak password settings, unnecessary services not disabled, and weak configurations
- Develop documentation [FIPs 199, FIPs 200, PTA, PIA, e-authentication on new or existing systems
- Provide system/equipment/specialized training and technical guidance
- Serve as liaison with clients, participating in meetings to ensure client needs are met
- Independently research and collaborate with teams to develop knowledge regarding environment.
- Take on leadership roles within team and effectively train team members based on inherent knowledge
Information Systems Security Officer
HM CPA LLC
Hart, CT
04.2016 - 11.2019
- Ensured that Information Systems security architecture, designs, plans, controls, processes, policies, and procedures were aligned with client policies
- Collaborated with compliance and legal departments for overall updates and verified unified approach to risk management and mitigation
- Assigned corrective action target dates for identified risks and verified timely completion and implementation to comply with regulatory requirements
- Performed in-depth and comprehensive gap analyses to determine root cause of process gaps and regulatory compliance failures
- Assisted with development and ongoing management of formal Cybersecurity Governance, Risk, and Compliance (GRC) Program
- Acted as a subject matter expert and maintain up-to-date knowledge of IT compliance and regulatory requirements
- Partnered with cross-functional departments in IT and organization to foster a culture of security and compliance
- Prepared technical reports detailing risks associated with identified vulnerabilities and recommended corrective actions for mitigation of system threats
- Work with business partners, clients, customers, third parties, and independent security assessors, to educate them about Third Party Security requirements and assist in interpretation and implementation of requirements
- Monitor compliance with federal state and other departments
- Manage ongoing security data awareness training for over 40 people.
- Reviewed violations of computer security procedures and developed mitigation plans.
- Managed time efficiently to complete all tasks within deadlines.
Education
Ph.D. - Governance, Risk And Compliance
Northcentral University
Scottsdale, AZ08.2025
Master of Education - Applied Behavior Analysis
University of Cincinnati
Cincinnati, OH08.2021
Bachelor of Applied Science in Information Technology - Information Technology Project Management
Pentecost University College
Ghana2013
Diploma - Accounting and Numeracy
Institute of Commercial Management (ICM)
Ghana01.2002
Skills
- Security Assessment & Authorization
- Policy and Process Development
- Security Planning
- Incident Response and reporting
- Risk Assessments
- Vulnerability Management
- FISMA Act 2002
- NIST SP 800-Series
- Tenable Nessus Scanning
- ISO 2700X
- Project Management
- ServiceNow Security
- Risk Management Framework
- Cloud Security
- Business Continuity and Disaster Recovery planning
- IT General Controls (ITGC) Auditing
- Power shell
- Security Governance
- Endpoint Security
- Security Systems Knowledge
- Continuity Monitoring
- Compliance with Security Requirements
- Splunk SIEM
- Business Impact Analysis
- Network Performance Monitoring
- Risk Mitigation
- Deductive Reasoning Skills
Certification
- CompTIA Advanced Security Practitioner (CASP)
- Certified Information Systems Manager (CISM)
- CISA - Certified Information Systems Auditor
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Quote
There is a powerful driving force inside every human being that, once unleashed, can make any vision, dream, or desire a reality.
Tony Robbins
Timeline
SECURITY CONTROL ASSESSOR
WORLDWIDE CONSULTING SEVERN MD
11.2019 - Current
Information Systems Security Officer
HM CPA LLC
04.2016 - 11.2019
Ph.D. - Governance, Risk And Compliance
Northcentral University
Master of Education - Applied Behavior Analysis
University of Cincinnati
Bachelor of Applied Science in Information Technology - Information Technology Project Management
Pentecost University College
Diploma - Accounting and Numeracy
Institute of Commercial Management (ICM)
Similar Profiles
Louise RidingLouise Riding
Co Founder HLR Consulting at HLR Consulting Worldwide SLCo Founder HLR Consulting at HLR Consulting Worldwide SL
Elisabeth Winkler MatteoElisabeth Winkler Matteo
Executive Coach and Project Manager at EWM Consulting Solutions, WorldwideExecutive Coach and Project Manager at EWM Consulting Solutions, Worldwide
Ariana MadrigalAriana Madrigal
Social Media Manager at MD Consulting NYSocial Media Manager at MD Consulting NY