Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Stephen Akinkuade

York,Pennsylvania

Summary

Cybersecurity expert with 7 years of experience in developing and implementing security solutions in dynamic environments. Skilled in operating vulnerability scanning tools such as Nexpose, Qualys, and Tenable, with a focus on configuring scans and generating detailed reports. Proficient in vulnerability assessment, continuous monitoring, and remediation recommendations, alongside a strong understanding of RMF, FISMA, and NIST standards. Experienced in preparing and reviewing Authorization Packages, Security Assessment Plans, and Security Control Assessments, with effective communication skills for both direct and remote analysis.

Overview

8
8
years of professional experience
1
1
Certification

Work History

Vulnerability Management Engineer

Relevant Technology
Richardson, Texas
08.2024 - Current
  • Configured Nexpose sites, address ranges, scan engines, and credentials to enhance scanning efficiency.
  • Ensured regular scanning of all systems for vulnerabilities.
  • Maintained all vulnerability and threat management solutions effectively.
  • Assisted in generating comprehensive vulnerability reports.
  • Designed and implemented monitoring solutions for vulnerability reporting.
  • Troubleshot long-running scans, addressing false positives and negatives.
  • Set up vulnerability assessment tools with IT managers to minimize false positives.
  • Managed tickets within Vulnerability Management process to expedite item resolution.

Theat and Vulnerability Management Engineer

GCI
, AK
08.2022 - 07.2024
  • Executed Information Assurance Vulnerability Management to enhance security posture and ensure compliance with organizational standards.
  • Conducted operating systems, network, web, and compliance scans using Nessus, Qualys, and Nexpose to identify vulnerabilities.
  • Analyzed scan results for false positives and proposed remediation for valid findings.
  • Developed comprehensive vulnerability assessment reports detailing detected vulnerabilities and non-compliance issues.
  • Recommended mitigating measures based on identified vulnerabilities using standard tools like ITSM and CMDB.
  • Collaborated with system owners and security officials to present vulnerability and compliance assessment findings.
  • Coordinated remediation efforts with technology partners by establishing action plans and timelines.
  • Researched emerging vulnerabilities from US-CERT to recommend appropriate mitigation strategies.

Cyber Security Analyst

Douala IT
06.2018 - 07.2022
  • Conducted FISMA-based security risk assessments for government contracting organizations and application systems through interviews, tests, and inspections.
  • Produced detailed assessment reports and recommendations, including conducting out-briefings.
  • Applied NIST Special Publications and FIPS frameworks for A&A activities on Department of State IT systems.
  • Performed independent security control assessments in accordance with NIST SP 800-53 and Risk Management Framework (RMF).
  • Reviewed A&A documentation, identified assessment results, and updated core IT security documentation.
  • Executed Risk Management Framework Step 4 Security Control Assessments, inputting results for Open Net systems using STIGS.
  • Assessed various system scopes and complexities, managing multiple assessments, including cloud systems.
  • Created Security Assessment Reports to summarize risks and impacts for system owners and security officials.

Education

Master of Science - Cybersecurity Technology

University of Maryland Global Campus
Adelphi, MD

Bachelor of Science - Computer and Electrical Engineering

Morgan State University
Baltimore, MD

Associate of Science - Electrical Engineering

Baltimore City Community College
Baltimore, MD

Skills

  • Networking protocols: TCP/IP, IPv4, VPN, HTTP, DNS, LAN/WAN, OSPF, BGP
  • Vulnerability assessment tools: Qualys, Nessus, Nexpose, Rapid7, InsightVM, OpenVAS, Core Impact
  • IT service management: ServiceNow, Cherwell
  • Security monitoring: Snort, TCPDUMP, Wireshark
  • Identity management: Active Directory
  • Network security measures: IDS, IPS, DHCP
  • Data analysis: Splunk
  • Web application security: Burp Suite, OWASP
  • Cloud services: AWS, Azure
  • Office productivity tools: MS Office, Office 365, MS Visio
  • Operating systems: Windows, Linux
  • Certifications: CompTIA
  • Penetration testing: Metasploit
  • Compliance frameworks: NIST, FISMA
  • Cybersecurity practices: Information assurance (IA)

Certification

  • Certified Security Plus (CompTIA Security+)
  • Amazon Web Services Solutions Architect Associate (AWS)
  • Certificate for Cyber Security Track at the Network Information and Embedded Systems Security Center of Academic Excellence (NIESS-CAE) Program at Morgan State University

Timeline

Vulnerability Management Engineer

Relevant Technology
08.2024 - Current

Theat and Vulnerability Management Engineer

GCI
08.2022 - 07.2024

Cyber Security Analyst

Douala IT
06.2018 - 07.2022

Master of Science - Cybersecurity Technology

University of Maryland Global Campus

Bachelor of Science - Computer and Electrical Engineering

Morgan State University

Associate of Science - Electrical Engineering

Baltimore City Community College
Stephen Akinkuade