Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Richard Banahene

Denver,Colorado

Summary

Detailed knowledge of security tools, technologies (Nessus, McAfee, Splunk), and best practices with more emphasis on ISO 27001, ISO 27002, NIST, FISMA and Vendor Risk Management. Over 4 years of experience in crafting System Security Plans (SSPs), managing Plan of Actions and Milestones (POA&Ms), enhancing system security posture and reducing incidents of data breaches.

Overview

5
5
years of professional experience
1
1
Certification

Work History

Information Security Specialist

United Healthcare (Contractor)
Denver, Colorado
04.2023 - Current
  • Monitoring and ensuring compliance with relevant security standards and regulations, such as PCI DSS, HIPAA, FISMA, and ISO 27001:22.
  • Providing training to staff on security best practices and compliance requirements.
  • Review and update existing compliance policies and procedures.
  • Monitor system logs for suspicious activities, and investigate any potential threats.
  • Develop, review, and evaluate System Security Plan (SSPs) based on NIST Special Publications SP 800-18 requirements.
  • Execute regular reviews on access control lists to ensure that only authorized personnel have access to confidential information.

Information Security Specialist

Accenture Federal Services (Contractor)
Arlington, VA
03.2021 - 03.2023
  • Planned and executed internal and external audits to ensure adherence to regulations like FISMA, HIPAA.
  • Developed and evaluated security controls based on ISO 27001:22 standards to identify potential gaps in required documentation and processes.
  • Assisted in creating and maintaining security policies and procedures to ensure compliance with federal regulations and standards.
  • Provided training to staff on security best practices and compliance requirements.
  • Prepared reports on compliance status, security risks, and incident responses for management review.
  • Worked with IT, legal, and other departments to align security strategies with organizational goals.

Information Security Specialist

Denver Health Medical Center (Contractor)
Denver, CO
01.2020 - 02.2021
  • Monitored and ensured compliance with relevant security standards and regulations, such as PCI DSS, HIPAA, and FISMA.
  • Conducted regular risk assessments and vulnerability scans using Nessus to identify potential security threats, areas of non-compliance, and recommended mitigation strategies.
  • Facilitated internal and third-party information security risk assessments and worked closely with functional groups or departments to prioritize and remediate findings.
  • Conducted security training and awareness programs to ensure all employees understood and complied with security policies and procedures.
  • Monitored changes in relevant legislation and advised management of necessary actions.
  • Assisted in developing Plans of Actions and Milestones (POA&M) entries.

Education

Associate of Science - Cybersecurity

University of Phoenix
Tempe, AZ

Bachelor of Science -

University of Cape Coast
Ghana

Associate of Science -

Mampong Technical College
Ghana

Skills

  • Incident Response (Splunk)
  • Compliance Management
  • Disaster Recovery (Acronis Cyber Protect)
  • Access Control
  • Information Governance
  • Vulnerability Assessment (Nessus)
  • Risk Assessment
  • Data System Analysis

Certification

  • CISA in progress
  • CompTIA Security+ in progress

Timeline

Information Security Specialist

United Healthcare (Contractor)
04.2023 - Current

Information Security Specialist

Accenture Federal Services (Contractor)
03.2021 - 03.2023

Information Security Specialist

Denver Health Medical Center (Contractor)
01.2020 - 02.2021

Associate of Science - Cybersecurity

University of Phoenix

Bachelor of Science -

University of Cape Coast

Associate of Science -

Mampong Technical College

Similar Profiles

CREATE PROFILE
Richard Banahene