Rinoldy Masson

Jacksonville

Summary

Detail-oriented Entry-Level GRC Analyst with 8 years of experience in compliance enforcement and risk reduction within regulated environments. Proficient in supporting cybersecurity audits and developing policies, with hands-on training in NIST CSF and NIST SP 800-53. Demonstrated ability to align business objectives with security frameworks, ensuring regulatory compliance. Committed to enhancing processes and workflows to drive team efficiency and effectiveness.

Overview

years of professional experience

Certification

Work History

Fraud Specialist

Genpact

Jacksonville

02.2022 - 03.2023

Investigated fraud incidents and supported documentation in accordance with compliance procedures
Logged and maintained detailed audit trails for customer cases to support internal risk analysis
Ensured alignment with data protection practices and internal reporting standards

Assistant Loss Prevention Manager

Nordstrom

Garden City

07.2015 - 02.2018

Supervised team of 7 agents and enforced security procedures to reduce organizational risk
Conducted internal investigations and prepared reports for high-value loss incidents
Reviewed compliance exceptions and supported implementation of shrink-reduction policies

Loss Prevention & Security Roles

01.2011 - 01.2015

Monitored retail compliance using CCTV, exception reports, and security audits
Wrote incident reports and collaborated with law enforcement when necessary
Trained new associates on corporate safety procedures and escalation protocols

Education

High School Diploma -

Malverne High School

Malverne, NY

06.2005

Skills

Risk Assessment & Threat Modeling (NIST SP 800-30)
Governance, Risk & Compliance (GRC)
Security Auditing & NIST SP 800-53 Controls
Security Awareness & Policy Development
Compliance: HIPAA, SOX, GDPR, FISMA
Incident Response & Documentation
Microsoft Office (Excel, Word, PowerPoint, Outlook)

Report Writing & Internal Controls
Access Control & Asset Management
Data analysis
Compliance auditing
Risk assessment
Policy implementation
Customer relationship management

Certification

GRC Analyst Master Class, 12/31/25
Google Cybersecurity Certificate, 12/31/25
Security+, In Progress, 08/31/25

Accomplishments

Investigated and resolved over 100+ fraud cases, improving fraud detection accuracy and internal reporting compliance.
Led a 7-person team in enforcing loss prevention procedures, achieving a 20% reduction in inventory shrink.
Conducted monthly compliance audits and exception report reviews, improving audit readiness and internal control alignment.
Supported investigations that prevented $5,000+ in potential financial losses through proactive risk mitigation.
Developed and delivered store-level security action plans, enhancing staff compliance awareness.
Created and maintained detailed incident and investigation reports to support audit trails and risk analysis.
Implemented asset protection policies that improved inventory control accuracy and reduced high-ticket loss.
Collaborated with law enforcement and internal teams to streamline incident response for internal and external theft.
Monitored access control and surveillance systems to enforce physical and procedural security.
Maintained zero cash handling errors in multiple roles, reinforcing strong process and compliance standards.

Cybersecurity Projects

GRC Analyst Master Class, 12/31/25, Executed an audit using NIST SP 800-53 controls; conducted interviews and document reviews., Created and aligned security policies for access management and third-party authorizations., Applied NIST CSF to build structured cybersecurity programs., Developed tailored security awareness materials and simulated phishing response., Used NIST SP 800-30 for risk modeling and executed threat modeling exercises.

Timeline