Sandra Nyame
Queens,NY
Summary
Cybersecurity and Risk Management Analyst.IT Security Expert .Public Trust Clearance-Ready.
Results-oriented IT professional with 5 years of experience in cybersecurity,compliance,and risk management frameworks(RMF).With a focus on privacy and data protection. Protecting sensitive data,managing security risks and ensuring regulatory compliance.I am a fast learner .I have a strong verbal/written communication skills.Seeking a position in a public trust environment where i can expertise to support federal security initiatives.
Overview
5
5
years of professional experience
Work History
Cybersecurity Analyst
Right At Home Agency
Darien, CT
01.2023 - Current
- Developed and maintained System Security Plans (SSPs), and collaborated on risk mitigation strategies.
- Collaborated with cross-functional teams to address cybersecurity risks and improve the security posture for high-risk systems.
- Coordinated security updates to avoid outages and downtime.
- Ensured annual Contingency Plan tests are conducted per the organization's policy, with evidence walkthroughs and system testing during the process.
- Prepared detailed reports and presented the findings to leadership, making recommendations to enhance security frameworks.
- Led risk assessment and vulnerability management for systems handling PII and PHI to ensure compliance with NIST and HIPAA standards.
- Manage audits and compliance checks, ensuring FISMA and NIST 800-53 standards were consistently met.
Information Security Analyst
CP Unlimited
The Bronx, NY
10.2021 - 11.2023
- Performed vulnerability scans on systems, networks, applications and databases.
- Led the preparation of Security Authorization Packages, and ensured compliance with FISMA and NIST 800-53.
- Collaborated with security teams to enforce cybersecurity protocols, and data protection measures across federal IT infrastructures.
- Managed incident response plans for sensitive data breaches, and escalated issues to the appropriate channels.
- Conducted security assessments, vulnerability scanning, and compliance reviews for federal systems.
- Provided guidance to senior management on implementing risks for public trust systems.
- Review and evaluate System Security Plan based on NIST Special Publications.
Compliance and Risk Management Specialist
Daniel Care LLC
Stamford, CT
09.2019 - 08.2021
- Maintained up-to-date records on regulatory requirements applicable to company operations.
- Developed contingency plans for responding effectively when faced with unexpected events or circumstances that pose a threat to the organization's goals or operations.
- Reviewed insurance policies regularly and provided advice regarding coverage levels needed by the business.
- Supported the implementation of Risk Management Framework (RMF) policies and procedures for federal IT projects.
- Assisted in the preparation of compliance documentation, including Privacy Impact Assessments (PTAs) for various IT systems.
- Worked closely with stakeholders to ensure compliance with FISMA guidelines.
- Developed and implemented data privacy policies to ensure PII and PHI were handled securely across all platforms.
- Used Excel pivot tables, charts and reports to break down and analyze information.
Education
Bachelor of Science - Nursing Science
Kwame Nkrumah University of Science And Technology
Kumasi,GH05-2014
Skills
- In-depth knowledge of the Risk Management Framework (RMF), HIPAA, and NIST standards, with a proven track record of ensuring system compliance and security
- Proven ability to collaborate across teams to implement security controls, reduce vulnerabilities, and maintain system integrity
- Perform continuous monitoring of information security in compliance with NIST Special Publication 800-137
- Effective interpersonal, verbal, and written communication skills
- Expertise in safeguarding Personally Identifiable Information (PII) in compliance with HIPAA, FISMA, NIST, and RMF standards
- Eligible for Public Trust Clearance, with the ability to quickly obtain the required clearance for federal positions
Timeline
Cybersecurity Analyst
Right At Home Agency
01.2023 - Current
Information Security Analyst
CP Unlimited
10.2021 - 11.2023
Compliance and Risk Management Specialist
Daniel Care LLC
09.2019 - 08.2021
Bachelor of Science - Nursing Science
Kwame Nkrumah University of Science And Technology