Erika Mendez
Analyst
Norwalk,CA
Summary
Results-driven Analyst that is effective in proactively identifying and highlighting potential risks while instilling a culture of responsibility and attentiveness. Seeking a position that offers professional challenges utilizing interpersonal skills, excellent time management and problem-solving skills. Hardworking and passionate with strong organizational and detail-oriented skills. Eger to secure a mid-senior, full-time Analyst position. Ready to help team achieve company goals.
Overview
14
14
years of professional experience
Work History
IT Risk and Security Analyst III
Capital Group
07.2020 - 04.2023
- Lead complex risk analysis processes, compare findings with established controls and where risk is unmitigated, establish control requirements across IT teams.
- Responsible for making risk decisions and recommendations to stakeholders.
- Responsible for development and improvement of information security processes related to Risk and Security controls that safeguard confidentiality, integrity, and availability of company data.
- Detect potential data breaches, exfiltration, data loss, destruction, or misuse of sensitive data across company.
- Responsible for daily monitoring of enterprise Data Loss Prevention (DLP) solution.
- Combining data from multiple sources to observe any anomaly in employee behavior.
- Investigate nefarious allegations to check validity and recommend actions to minimize risk.
Information Security Risk Analyst
Capital Group
09.2018 - 06.2020
- Liaison between business users and technology/application teams to help bring clarity and structure to ambiguous problems and communicate effectively to provide clear direction.
- Assist in designing and implementing company's segregation of duties (SOD) and privileged access management framework.
- Provide system security access expertise in response to various business areas or vendor requests for analysis, support, or testing
- Proactively identify trends and educate business areas and IT teams on appropriate processes and procedures regarding system access to ensure the right access for the right person at the right time components are implemented
- Develop and execute various processes to ensure access security controls are being implemented based on industry standards and best practices
- Work with internal and/or external auditors to ensure access controls and policies comply with data security regulations.
- Investigated and resolved incidents of unauthorized access to sensitive information.
Security Access and Risk Business Systems Analyst
Capital Group
01.2016 - 08.2018
- Conduct research and analysis (e.g., gap analysis, impact analysis, data analysis, root cause analysis, system, and process mapping) concerning evolving business processes and related security access requirements.
- Investigate applications’ use and access model including components needed to access system, key user groups, levels of access required and what access entitles users to accomplish.
- Assist with periodic access review processes to assess continued appropriateness of access and validation of ongoing business needs to access systems containing sensitive data.
- Propose and/or create new access roles, changes to access, or manual controls by collecting, defining and analyzing business requirements.
- Map users’ access utilizing Role-Based Access Control (RBAC) methodology.
- Identify needed business improvements and determine appropriate systems required to implement solutions.
Information Security Analyst
Sony Pictures Entertainment
10.2009 - 06.2015
- Support Information Security department initiatives around risk management, operations management, and compliance management.
- Perform risk assessments via Archer of suppliers/vendors’ security practices and determine compliance with current set policies.
- Support in risk analysis for infrastructure and applications as part of risk management lifecycle.
- Work with business owners and project managers to ensure that critical risks are mitigated in accordance with applicable security policy and standards.
- Ensure security and protection of company’s applications by recommending implementation of necessary controls.
- Conducted security audits of third party vendors to identify vulnerabilities.
- Review and monitor vendors’ SOC reports to identify any gaps within their control environment and recommend additional controls.
Education
Bachelor’s - Science/Information Technology
University of Phoenix
California10.2015
Associate’s - Liberal Arts/Administration of Justice
East Los Angeles College
Monterey Park, CA06.2000
Skills
- Collaboration and Communication
- Attention to detail
- Critical thinking
- Adaptability
- Project management
- Work ethic
- Problem solving
- Documentation
- Customer service
- MS Office
- Presentation Software
- Risk Identification
- Data Integrity
- Customer Risk
- Organizational Standards
- Information Updates
- Document Organization
- Customer Needs Assessments
- Confidential Records Management
- Training Documentation
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Timeline
IT Risk and Security Analyst III
Capital Group
07.2020 - 04.2023
Information Security Risk Analyst
Capital Group
09.2018 - 06.2020
Security Access and Risk Business Systems Analyst
Capital Group
01.2016 - 08.2018
Information Security Analyst
Sony Pictures Entertainment
10.2009 - 06.2015
Bachelor’s - Science/Information Technology
University of Phoenix
Associate’s - Liberal Arts/Administration of Justice
East Los Angeles College
Similar Profiles
Sandra GarciaSandra Garcia
Client Service Specialist III at Capital GroupClient Service Specialist III at Capital Group
Jaime-Anne MarioJaime-Anne Mario
Core Ops Lead Analyst at Capital GroupCore Ops Lead Analyst at Capital Group
Jennifer AdamsJennifer Adams
Global Meetings Specialist at Capital GroupGlobal Meetings Specialist at Capital Group
Anthony ModesittAnthony Modesitt
Retirement Plan Services at Capital GroupRetirement Plan Services at Capital Group
Gael AnayaGael Anaya
English Tutor at Independent WorkEnglish Tutor at Independent Work