Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

MICHAEL ISHIGUZO

Irvington,NJ

Summary

Detail-oriented and proactive GRC Analyst with over 5 years of experience in risk management, compliance, and governance. Proficient in developing and implementing security policies, conducting audits, and ensuring compliance with regulations such as GDPR, SOX, ISO 27001, HITRRUST and HIPAA. Strong analytical, communication, and problem-solving skills, with a commitment to maintaining high ethical standards and fostering a culture of compliance. Proven track record of maintaining effective GRC programs to ensure regulatory adherence and mitigate risks. Demonstrates expertise in security, with a primary focus on safeguarding the confidentiality, integrity, and availability of critical data and systems.

Overview

6
6
years of professional experience
1
1
Certification

Work History

GRC Analyst (Contract)

Hackensack University Medical Center NJ
01.2022 - Current
  • Assisted in the implementation of security measures and controls to protect sensitive information and ensure data integrity
  • Monitored changes in regulatory requirements and updated policies and procedures accordingly
  • Documents and monitors mitigation strategies and risk management plans
  • Conduct internal and external audits to ensure compliance with regulatory standards, including GDPR, SOX, and HIPAA
  • Support assessment results management, using GRC tools for tracking, remediation follow-up, and risk data compilation
  • Developed and delivered training programs to educate employees on compliance requirements and best practices
  • Analyze risk data and generate detailed reports to inform senior management and support decision-making processes
  • Manage and respond to security incidents, ensuring timely resolution and documentation of breaches
  • Ensure the security of confidential information, assets, and intellectual property through robust security measures and controls
  • Contentiously monitored all vendors during the life of contract
  • Assist in disaster recovery planning, scheduled testing, and played a key role in business continuity planning for IT and emergency notification services
  • Developed and implemented policies, procedures, and controls to ensure compliance with HIPAA regulations, HITECH Act, and other healthcare laws and standards
  • Monitors compliance with cybersecurity control framework
  • Managed security measures such as access controls, encryption, and intrusion detection systems to safeguard patient data and prevent unauthorized access
  • Conducted risk assessments and compliance audits to identify gaps and implement corrective actions.

Compliance Analyst (Contract)

Walmart-Remote NJ
09.2020 - 12.2021
  • Facilitate Vulnerability Assessments and Critical/High-Security Incidents and Threats
  • Assisted in conducting risk assessments, compliance audits, and gap analyses to identify areas of improvement and non-compliance
  • Contributed to the development and documentation of policies, procedures, and controls related to information security and regulatory compliance
  • Assisted in incident response efforts by analyzing security incidents, documenting findings, and recommending corrective actions
  • Participated in vendor risk assessments to evaluate the security posture of third-party vendors and service providers
  • Develop and implement comprehensive risk management strategies to identify, assess, and mitigate potential risks
  • Conducted risk assessments and gap analyses to identify vulnerabilities and compliance gaps within the organization's processes, systems, and data
  • Established and maintained strong relationships with regulatory agencies and industry partners to stay abreast of changes in regulations and best practices
  • Preparing policies and procedures, reports, memoranda, and other client deliverables
  • Supporting and participating in client engagements including annual compliance program reviews and mock examinations
  • Maintain accurate records and documentation related to compliance activities
  • Collaborate with cross-functional teams to promote a culture of compliance and continuous improvement.

GRC Analyst (Contract)

T – Rex Corporation-Remote DC
05.2018 - 08.2020
  • Experience in security governance, risk, and compliance or related
  • Broad and solid understanding of cybersecurity concepts and risks
  • Strong familiarity with industry frameworks such as ISO standards, NIST, and SOC reports
  • Review and update the firm’s information security policies
  • Manage and support the 3rd Party Security Vendor Risk Management program and life cycle
  • Track and schedule activities related to certifying the firm’s Information Security Management System’s ISO27001 certification
  • Coordinate with other IT teams and other departments to perform risk assessments and track risk mitigation and remediation
  • Support Compliance and Security assessment efforts with both external and internal stakeholders
  • Analyzes and reports on risk trends and metrics
  • Analyze client and stakeholder requirements in support of Business Continuity planning efforts
  • Support development of Business Continuity and Disaster Recovery plans and related documents in accordance with recognized standards and best practices
  • Assisted in conducting risk assessments, compliance audits, and gap analyses to identify areas of improvement and non-compliance
  • Supported incident response efforts by analyzing security incidents, documenting findings, and assisting in the implementation of corrective actions
  • Provide expert consultation on HIPAA-compliant security solutions, remediation strategies, and best practices to optimize clients' security posture.

Education

Associate of Applied Science - Cybersecurity and Technology

Essex County College
Newark, NJ
12.2022

Skills

  • Risk Management
  • Compliance Knowledge
  • Audit Procedures
  • Policy Development
  • Incident Response
  • Data Analysis
  • Project Management
  • Software Proficiency
  • Documentation
  • Analytical Thinking
  • Communication
  • Time Management

Certification

  • Certified Information Systems Auditor (CISA) - In-View
  • CompTIA Security+
  • CompTIA CYSA+
  • CompTIA Pen Test+
  • CompTIA CASP

Timeline

GRC Analyst (Contract)

Hackensack University Medical Center NJ
01.2022 - Current

Compliance Analyst (Contract)

Walmart-Remote NJ
09.2020 - 12.2021

GRC Analyst (Contract)

T – Rex Corporation-Remote DC
05.2018 - 08.2020

Associate of Applied Science - Cybersecurity and Technology

Essex County College

Similar Profiles

  • Mariel Rodriguez

    Mariel RodriguezMariel Rodriguez

    Labor and Delivery RN at Hackensack University Medical Center Palisades Medical CenterLabor and Delivery RN at Hackensack University Medical Center Palisades Medical Center

  • Eileen Baker

    Eileen BakerEileen Baker

    Outpatient Registered Dietitian Nutritionist at Dave Winfield Nutrition Center at Hackensack University Medical CenterOutpatient Registered Dietitian Nutritionist at Dave Winfield Nutrition Center at Hackensack University Medical Center

  • Carlos Amaya

    Carlos AmayaCarlos Amaya

    Wound, Ostomy, and Continence Nurse at Hackensack University Medical CenterWound, Ostomy, and Continence Nurse at Hackensack University Medical Center

  • Cassandra Lettsome

    Cassandra LettsomeCassandra Lettsome

    3D Artist at Self-employed3D Artist at Self-employed

  • Imanie Cifrant

    Imanie CifrantImanie Cifrant

    Receptionist at Training, Inc. at Essex County CollegeReceptionist at Training, Inc. at Essex County College

CREATE PROFILE
MICHAEL ISHIGUZO