Summary
Overview
Work History
Education
Skills
Certification
Languages
Timeline
Generic

NALAIN MOUSS

Houston,TX

Summary

Ability to apply security risk assessment methodology to system development.

Ability to provide support and guidance through the phases of FISMA SA&A, including monitoring of the C&A artifacts compliance, annual self-assessment.

Ability to develop POA&M (Plan Of Action & Milestones) document to take corrective actions resulting from ST&E (System Test & Evaluation).

Work effectively in a team environment and participate in collaborative initiatives which foster the mutual exchange of knowledge and expertise.

Ability to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities.

Ability to communicate effectively to build and maintain customer satisfaction and express conclusions in a clear, technically sound manner on matters associated with IT security. Seasoned Cybersecurity Analyst with comprehensive background in threat detection, network security protocols and risk assessment. Strengths include vulnerability testing, securing information systems, and developing effective cybersecurity strategies to enhance organizational cyber infrastructure. Demonstrated success in establishing robust security measures that safeguard critical data while ensuring regulatory compliance.

Overview

7
7
years of professional experience
1
1
Certification

Work History

Information Assurance Analyst

Risgroup llc
10.2019 - Current
  • Scheduled kick off meetings with system owners to help identify assessment scope, system boundary, the information system's category and attain any artifacts needed in conducting the assessment
  • Participate in the FIPS 199 process in which security categorization takes place, and selecting the technical, operational and managerial controls using NIST SP 800-60 guidelines
  • Provided support for documentation initiatives as related to System Security Plans, Risk Assessment Plans, Continuity of Operations Plans, Incident Response Plans, and Security Test and Evaluation (ST&E) standards
  • Ensured that established internal control procedures were in compliance by examining reports, records, documentation and operating practices
  • Worked with a team of assessors, system owners, and system engineers to assist in the development, categorization, implementation, assessment, and monitoring of common security controls
  • Ensured that security awareness and training materials are reviewed periodically and updated when necessary
  • Planned and led POA&M teams to remediate the information system vulnerabilities and prepared authorization packages for ATO (Authorization to Operate)
  • Experience with Risk Management Framework (RMF)

Information Assurance Analyst

06.2018 - 09.2019
  • Guided System Owners and ISSOs through the Certification and Accreditation (C&A) process
  • Ensured that management, operational and technical controls for securing either Sensitive Security Systems or IT Systems are in place and are adhered to in accordance with federal guidelines (NIST 800-53)
  • Supported System Test and Evaluation (ST&E) effort and other IT Security Office duties
  • Participated in planning, training, and preparation for contingency and disaster recovery operations
  • Ensuring the management, operational and technical controls for securing either sensitive Security Systems or IT Systems are in place and are followed according to federal guidelines (NIST SP 800-53)
  • Ensured that appropriate steps are taken to implement information security requirements for IT systems
  • Monitor controls post authorization to ensure continuous compliance with the security requirements
  • Update the controls changes from NIST-800 53 rev 3 to NIST-800 53 rev 4 and control assessment changes from NIST-800 53A to NIST 53A rev4
  • Ensure compliance with Baseline security configurations, IT controls and policy standards
  • Ensured all systems are operated, maintained, and information is disposed of in accordance with security policies
  • Documents the results of Assessment and Authorization (A&A) activities and technical or coordination activity and prepare the System Security Plans and update the Plan of Actions and Milestones (POA&M)

Information Assurance Analyst

Fuse Consulting
07.2017 - 05.2018
  • Periodically conducts a complete review of each system's audits and monitor corrective actions until all actions are closed
  • Collaborated with system stakeholders to develop and maintain security documentation required for Authority to Operate (ATO) approval
  • Supported the tracking, reporting and remediation of agency Plan of Action and Milestone (POA&Ms)
  • Performed incident response, as defined by FISMA, in support of all security incidents related to customer information or information systems
  • Assessed the effectiveness of a subset of implemented controls on an ongoing basis to inform the AO's decisions regarding the continued use and operation of the system
  • Maintained SA&A documents in the Cyber Security Assessment and Management solution (CSAM)
  • Led in the development of Privacy Threshold Analysis (PTA) and Privacy Impact Analysis (PIA)by using NIST privacy handbook, and also working closely with the Information System Officers (ISSO's) the System Owners (SO) and the information owners(IO)
  • Conducts Security Test and Evaluation (ST&E) using NIST 800 53A
  • Rev 4 and develop supporting documentation to the result based on security control requirement
  • Support Security Assessment and Authorization (SA&A) activities, by preparing the complete ATO package for the authorization official to make accreditation decision
  • Review and Updates System Security Plans using the NIST 800-18 as a guide

Education

Associate of Arts - Technical And Scientific Communication

Houston Community College
Houston, TX
01-2024

Skills

  • Vulnerability Assessment
  • Access Control
  • Cybersecurity frameworks
  • Security analysis
  • Compliance Monitoring

Certification

COMPTIA SECURITY +

Languages

French
Professional
English
Professional

Timeline

Information Assurance Analyst

Risgroup llc
10.2019 - Current

Information Assurance Analyst

06.2018 - 09.2019

Information Assurance Analyst

Fuse Consulting
07.2017 - 05.2018

Associate of Arts - Technical And Scientific Communication

Houston Community College

Similar Profiles

  • Zarrina Khawaja

    Zarrina KhawajaZarrina Khawaja

    Overnight Pharmacist/remote clinical pharmacist/retail &independent pharmacy at Payless Staffing LLC /Tact Staffing LLC & Medical Staffing LLCOvernight Pharmacist/remote clinical pharmacist/retail &independent pharmacy at Payless Staffing LLC /Tact Staffing LLC & Medical Staffing LLC

  • Ida Beachy

    Ida BeachyIda Beachy

    Office Manager/Head Bookkeeper at Sunnybrook Excavating LLC, RHL Logistics LLC, Denny's Trucking LLCOffice Manager/Head Bookkeeper at Sunnybrook Excavating LLC, RHL Logistics LLC, Denny's Trucking LLC

  • Kimberlie Priser

    Kimberlie PriserKimberlie Priser

    Senior Loan Processor at Acrisure Mortgage, LLC Fka FBC Mortgage, LLCSenior Loan Processor at Acrisure Mortgage, LLC Fka FBC Mortgage, LLC

  • Jakwannai Washington

    Jakwannai WashingtonJakwannai Washington

    Lead Teacher, Biology & Biomedical Science at Sheldon Independent School DistrictLead Teacher, Biology & Biomedical Science at Sheldon Independent School District

  • ANDRE GOBERT

    ANDRE GOBERTANDRE GOBERT

    Certified Debt Specialist at National Debt ReliefCertified Debt Specialist at National Debt Relief

CREATE PROFILE
NALAIN MOUSS