Summary
Overview
Work History
Education
Skills
Certification
Contacts
Clearance
Timeline
Generic

Sylvia Ampofo Ansah

Woodbridge,VA

Summary

Security Specialist with deep, hands-on experience in successful enterprise-level security design, deployment, and enforcement. I am skilled at performing security assessments and audits to discover vulnerabilities and compliance gaps. Expert in drafting comprehensive reports covering risk indicators, performance metrics, and cybersecurity insights. Proficient in analyzing security incidents, performing root cause analysis, and creating appropriate articulations of findings.

Overview

6
6
years of professional experience
1
1
Certification

Work History

Security Specialist

KBR INC
02.2024 - Current
  • Collaborate in performing comprehensive annual inspections of the Sensitive Compartmented Information Facility (SCIF) to ensure compliance with the agency's security policies, and federal regulations.
  • Analyzed and reviewed security prescreen documentation regarding new hires for adherence to federal policy and organizational requirements.
  • Perform processing and verification of security clearances for government and contractor personnel.
  • Conduct comprehensive reviews of security clearances for new applicants and current employees to confirm qualifications and prohibition of access to classified material.
  • Ensure personnel understand and comply with policies for secure communication and data handling.
  • Verify and track visitor authorizations, and ensure proper escort procedures are followed.
  • Monitored security systems to ensure compliance with safety protocols.
  • Conducted regular inspections of facilities and equipment for potential security risks.

RMF Training

Tigh Tech Consulting
03.2025 - 07.2025
  • Created a comprehensive SSP for a fictional DoD information system, detailing system boundaries, security controls, and the operational environment in alignment with NIST SP 800-53 requirements.
  • Develop, update, and/or review RMF documentation to include the System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Plan of Action and Milestone (POA&M), Risk Assessment Report (RAR), and Security Assessment Plan (SAP).
  • Develop and maintain Authorization to Operate (ATO) packages for information systems to ensure they are in compliance with the organization's information security requirements, and make recommendations for mitigation.
  • Performs the FIPS 199 Security Categorizations using the NIST 800-60 Vol. 1 Rev. 1 as a guide to select the provisional impact level assigned to the Confidentiality, Integrity, and Availability (CIA) based on the information type.
  • Conduct security assessments and audits, identifying vulnerabilities, and recommending mitigations to strengthen the overall security posture.
  • Review and maintain security-related documentation, ensuring all system components and information types are clearly described and aligned with security policies.
  • Plan of Action & Milestones (POA&M): Identified system vulnerabilities and compliance gaps, formulated prioritized remediation plans, and created milestones for risk mitigation and tracking.
  • Performed risk assessments based on NIST 800-30 guidelines, analyzed potential threats and vulnerabilities, and rated risks to system confidentiality, integrity, and availability.
  • Designed an SAP outlining the scope, objectives, methodologies, and assessment techniques to be used during security control testing.
  • Incorporated DISA STIG security requirements into the authorization package to ensure compliance with DoD standards.
  • Tool Familiarity: Gained practical experience with RMF-related tools, such as eMASS and vulnerability scanners, to track authorization status and manage findings.
  • Analyzed company's expenditures and developed financial models.
  • Determined consumer needs to provide products and services appealing to larger market.

Program Analyst

ATSG
09.2021 - 12.2023
  • Reviewed FBI officials on travel request forms to ensure compliance with DOJ component guidance and mission requirements.
  • Assist by phone in resolving technical issues, and processing requests.
  • Handle, assess, and prioritize incoming user requests, and manage technical issues with software and websites.
  • Work with customers to provide guidance on procedures regarding account requests, travel request forms, and other procedures for mission success.
  • Managing user accounts, such as creation and activation, resetting passwords, assigning privileges, managing group memberships, and directory access control.

Program Support Specialist

Service Source Inc.
05.2019 - 08.2021
  • Assist customers with excellent service, troubleshoot issues, and offer navigation instructions.
  • Assist the conference center in the data collection, analysis, and formatting of its monthly reports.
  • Compiled attendance figures, classified/unclassified meeting data, and customer feedback for monthly reports.
  • Support DoD official meetings, events, and conferences planning, organizing, and execution.
  • Developed detailed plans and timelines for programs in conjunction with cross-functional teams.

Education

Bachelor of Science - Cybersecurity

University of Massachusetts Global
05.2026

Skills

  • Cybersecurity
  • Risk assessment and mitigation
  • POA&M management
  • FISMA
  • Authorization package
  • Assessment and authorization
  • Vulnerability assessment
  • Policy updates
  • Security assessments

Certification

CompTIA Sec+

Contacts

571-477-9950, sylviaampofo3@gmail.com

Clearance

Top Secret/SCI, CI Poly

Timeline

RMF Training

Tigh Tech Consulting
03.2025 - 07.2025

Security Specialist

KBR INC
02.2024 - Current

Program Analyst

ATSG
09.2021 - 12.2023

Program Support Specialist

Service Source Inc.
05.2019 - 08.2021

Bachelor of Science - Cybersecurity

University of Massachusetts Global

Similar Profiles

CREATE PROFILE