Nana Bonsu
GRC consultant
East Hartford,CT
Summary
Accomplished and creative Mid-Level Manager with over 4years of experience in information security possessing 5plus years multifaceted experience in information systems. Results-oriented, decisive leader adept at forging cross-functional relationships with key business partners, vendors and clients. Recognized for turning around IS compliance programs and enforcing technical controls to ensure organizational compliance. Hardworking and passionate job seeker with strong organizational skills eager to secure entry-level GRC position. Ready to help team achieve company goals.
Overview
5
5
years of professional experience
2
2
Certification
Work History
Manager, Governance Risk and Compliance
THE KEY HOME CARE LLC
07.2022 - Current
- Launched the Corporate IS Privacy and Compliance Program providing oversight ensuring compliance with NIST 800-171, GDPR, CCPA, LGPD, and other country-specific privacy laws, as well as Sarbanes-Oxley (SOX).
- Successfully implemented Identity and Access Management tools with Access Control Governance in key systems and applications where previously none existed.
- Implemented an Information Security Incident Response policy and program to ensure swift assessment and containment of threats against information system assets.
- Lead organization to reduce complex significant deficiencies across multiple access control areas.
- Orchestrated IS security and technical readiness audits utilizing internal and external teams in support of project deadlines and reducing security and compliance risks.
- Launched a third-party and cloud risk assessments to evaluate a IS vendor's security posture.
- Successfully managed budgets and allocated resources to maximize productivity and profitability.
Manager's Assistant
The Keyes Company
, CT
2024.04 - 2024.06
- Participated in team projects, demonstrating an ability to work collaboratively and effectively.
GRC Team
The Keyes Company
02.2020 - 03.2022
- Completed statistical reviews to uncover trends, patterns and variations.
- Enhanced GRC program effectiveness by conducting comprehensive risk assessments and recommending mitigation strategies.
- Implemented risk management frameworks, enabling clients to maintain a proactive approach towards potential threats.
- Coordinated ongoing efforts to strengthen risk culture and fine-tuned risk appetite for lending and funding activities.
Team Associate
Avanade
01.2019 - 01.2020
- Lead security operations monitoring firewall, IDS, desktop security, and 450+ servers with approximately 1,000 intranet and internet applications within at externally hosted data centers.
- Managed the IS governance and compliance activities for Sarbanes-Oxley (SOX), and EAR identified systems working closely with application teams, including mid-level and executive business leaders.
- Supervised two direct employees and two supplier resources overseeing all aspects of Identity and Access Management, Network Security, and Compliance.
- Successfully implemented and managed the Identity and Access Management (IAM) tools used for server and application access as well as enabling the monitoring and assessment of financial, operational, and information system risks upfront during the provisioning process.
- Matured operations standards and procedures for Incident Management, Change Management, and Problem Management that resulted in a significant drop in outstanding open tickets and requests, down from 21.24 days on average to 4.42 days on average, as well as improved the team's first-time quality of changes by 25%.
- Gained strong leadership skills by managing projects from start to finish.
Assistant Program Manager
Department Of Commerce
01.2018 - 10.2019
- Provided external hosting supplier managerial direction for 500+ servers and approximately 1,500 intranet and internet applications.
- Ensured seamless integration of vendor and corporate ITIL processes for the outsourced data center, including alignment with security policies.
- Lead continuous improvement efforts in all facets of operational responsibility, which included key infrastructure hardware upgrades (physical and virtual), incident management, and driving for root cause analysis for complex issues improve integrity and availability of systems.
- Helped orchestrate a large-scale data center migration from one hosting provider to another with zero business impact.
- Developed Incident Management Playbooks for Nine (9) Key Performance Environments to improve the integrity and availability of systems critical to business operations.
- Defined classification levels for all types of information and data, including privacy, PCI, quality systems, trade secrets, and intellectual property.
Education
Bachelor of Science - Health Administration
Bronx Community College of The City University of New York
The Bronx, NY05.2018
Masters - Communication And IT Information Management
Universitry of Ghana
West Africa GHana04.2006
Skills
- Information Security Best Practices
- Verbal and written communication
- Analytical Skills
- Policy Implementation
Accomplishments
- Collaborated with multiple technical teams to implement required technical controls for compliance with NIST 800-171.
- Collaborated with team of [Number] in the development of [Project name].
- Documented and resolved [Issue] which led to [Results].
- Achieved [Result] through effectively helping with [Task].
Certification
Comp security + and CRISC
Timeline
Manager's Assistant
The Keyes Company
2024.04 - 2024.06
Manager, Governance Risk and Compliance
THE KEY HOME CARE LLC
07.2022 - Current
GRC Team
The Keyes Company
02.2020 - 03.2022
Team Associate
Avanade
01.2019 - 01.2020
Assistant Program Manager
Department Of Commerce
01.2018 - 10.2019
Bachelor of Science - Health Administration
Bronx Community College of The City University of New York
Masters - Communication And IT Information Management
Universitry of Ghana
Comp security + and CRISC
Similar Profiles
Jackson Ukiru InimaJackson Ukiru Inima
Caregiver at The Key Home CareCaregiver at The Key Home Care
Shakirat FasasiShakirat Fasasi
Home Health Caregiver at THE KEY HOME CARE ASSISTANTHome Health Caregiver at THE KEY HOME CARE ASSISTANT
Constance CoxConstance Cox
Caregiver at The Key (Formerly Home Care Assistant)Caregiver at The Key (Formerly Home Care Assistant)