Detail-oriented compliance analyst familiar with conducting research and compliance investigations. Productive, responsible and insightful professional with an organized approach. Ready to leverage several years of experience to take on new position at successful organization.
Overview
24
24
years of professional experience
1
1
Certification
Work History
Security Compliance Analyst II
LEXISNEXIS, Dispute & Resolution
Alpharetta, GA
08.2021 - Current
Familiarity with NIST Risk Management Framework
Experience developing and reviewing cybersecurity documentation, standard operating procedure (SOP)
Implemented vendor risk assessment process ensuring 100% compliance to security standards
Monitored and reported on risk management performance
Familiar with AML security compliance standards and processes
Performed periodic reviews of existing processes and procedures to identify areas of improvement in terms of compliance standards.
Participated in meetings with external auditors regarding audit results related to compliance matters.
Performed updates and renewals to SOC2 report
Enhanced team collaboration by providing clear communication of complex findings through visualizations and reports.
Gather evidence items regarding security policies and controls
Gather remediation information for vulnerability scans
Identified and resolved problems through root cause analysis and research.
Performed system analysis, documentation, testing, implementation, and user support for platform transitions.
Installed system updates to address vulnerabilities and reduce security issues.
Generated reports detailing findings and recommendations.
Developed and updated tracking spreadsheets for process monitoring and reporting.
Implemented compliance, ensuring adherence to ISO 27001 and GDPR protocols
Strong oral and written communication skills
Experience documenting processes and procedures to comply with required NIST and IT standards
Ensured compliance regarding controls related to PCI DSS & SOC2 & SOX standards
Foundational knowledge in process flow diagrams, including ability to dissect business processes to identify risks and controls
Reviewed audit and monitoring reports related to consumer and client activities.
Prepared documentation and records for upcoming audits and inspections.
Assist investigations risk management teams with fraud investigations and risk identification.
Conducted periodic compliance audits and reviews to identify areas of improvement.
SOC Analyst
GEHA (Contract Weekend Shift)
Overland Park, KS
08.2020 - 09.2023
Monitored computer virus reports to determine when to update virus protection systems
Developed and implemented proactive defense strategies and processes to reduce potential of future security incidents
Monitored use of data files and regulated access to protect secure information.
Provide first level support on security issues
Experience with Windows, Linux & security best practices
Monitored completion of daily batch jobs via control-m
Performed risk analyses to identify appropriate security countermeasures.
Troubleshoot security issues and assist with security incident response
Monitors system for threats and vulnerabilities
Experience with incident response (IR) and security operations best practice
Knowledge of AWS & Azure cloud security practices
Experience with run books / play books
Experience with SIEM and logging technologies
Performed Threat Hunting practices
Analyzed network traffic and system logs to detect malicious activities.
Administered and monitored firewalls, intrusion detection systems and anti-virus software to detect risks.
Investigated and resolved incidents of unauthorized access to sensitive information.
Knowledge and understanding of network protocols and security practice
Enhanced network security by implementing intrusion detection systems and monitoring potential threats.
Assisted in successful completion of security audits, resulting in a boost of client trust and confidence.
Identified root causes of security breaches through thorough investigation and analysis of log data.
Provided technical support during high-priority incidents, ensuring timely resolution with minimal impact on business operations.
Maintained accurate documentation of all SOC activities, facilitating knowledge sharing.
Conducted security audits to identify vulnerabilities.
Performed administrative roles including documentation, projects coordination, communication, status report, assignment distribution, email correspondence, follow-up, etc.
Monitored and analyzed Intrusion Detection Systems (IDS) to identify security issues for remediation.
Evaluated current policies to identify gaps in existing controls.
Responded promptly to any reported issues or alerts related to system or network security.
Learned about latest security threats from blogs and online publications.
Worked closely with fellow security personnel to remedy and alleviate technology issues.
Reviewed security bulletins and vulnerability patch releases.
Supported incident responses for all security-related issues.
Linux Systems Administrator
Southeastern Data Cooperation
Dunwoody, GA
03.2016 - 07.2021
Performed production application support
performed client facing technical support
Resolves systems problems, improved operations and provided exceptional client support
Implemented Kickstart/PXE Boot Servers that Rsync between multiple locations.
Installed, configured, and updated Linux machines, with Red Hat, Debian, and CentOS.
monitored batch jobs via control-m
Troubleshoot, analyze and resolve computer problems related to both hardware and software.
Deploy new equipment and install applications, which enables customers to perform their job function on updated equipment which leads to higher work output.
Researched and consulted with customer on new hardware purchases to ensure that proper equipment was purchased which provided high productivity within their budget.
Resolved security vulnerabilities by analyzing and recommending improvements in communications and network security.
Experience with upgrading WebSphere with fixpacks and fixes using update installer.
Experience installing IBM WebSphere Application server on AIX servers
Monitored system performance and prevented resource exhaustion using ssh, sar, vmstat, iostat, netstat and nmon
Configured and maintained all web servers
Configured, tested, and managed software installs (typical and custom)
Participate in installing and configuring of UNIX/Linux based Oracle 10g products
Completed remote repairs involving software solutions and hardware repairs.
Setup daily, weekly and monthly incremental backups jobs for company servers
Security Analyst (Weekend Shift)
Linq3
Atlanta, GA
04.2016 - 01.2019
Conducted security audits to identify vulnerabilities.
Monitored and analyzed security logs and alerts generated by security tools to identify potential security incidents
Responded to and investigated suspected security incidents and provided timely and comprehensive incident response
Performed risk analyses to identify appropriate security countermeasures.
Completed vulnerability scans to identify at-risk systems and remediate issues.
Skilled at working independently and collaboratively in team environment.
Worked effectively in fast-paced environments.
Paid attention to detail while completing assignments.
Identified issues, analyzed information and provided solutions to problems.
Develop security reports and documentation
Monitor security systems and networks for potential threats
Performed administrative roles including but not limited to documentation, projects coordination, communication, status report, assignment distribution, email correspondence, follow-up, etc.
Monitored and analyzed Intrusion Detection Systems (IDS) to identify security issues for remediation
Ensured that all identified vulnerabilities are mitigated in a timely fashion.
Supported incident responses for all security-related issues.
Linux /Unix System Administrator
Primerica
Duluth, GA
11.2000 - 03.2016
Completed over 20 tickets per week that involved troubleshooting equipment hardware issues
Assisted in maintaining systems in lab environments
Managed daily activities to include user support and system administration tasks
Implemented Kickstart/PXE Boot Servers that Rsync between multiple locations.
Installed, configured, and updated Linux machines, with Red Hat, Debian, and CentOS.
Troubleshoot, analyze and resolve computer problems related to both hardware and software.
Deploy new equipment and install applications, which enable customers to perform their job function on updated equipment which leads to higher work output.
Ensured business continuity by designing, implementing and testing disaster recovery systems.
Monitored system performance and prevented resource exhaustion using ssh, sar, vmstat, iostat, netstat and nmon
Configured and maintained all web servers.
Configured, tested, and managed software installs (typical and custom)
Installed and configured Nagios system monitoring
Participate in installing and configuring of UNIX/Linux based Oracle 10g products.
Completed remote repairs involving software solutions and hardware repairs.
Setup daily, weekly and monthly incremental backups jobs for company servers
Analyzed logs, tracked and resolved software/hardware matters of significance pertaining to networking connectivity issues, servers, and applications to meet business needs.
Provides 24x7 on call support within team rotation.
Education
Associate of Science - Cybersecurity Program
Gwinnett Technical College
Lawrenceville, GA
12.2022
Bachelor of Science - Business /Marketing
Albany State University
Albany, GA
1993
Skills
Collaboration
technical support
Red Hat Linux
confluence/jira
Solarwinds
strong communication skills
Cloud Security
Troubleshooting
Incident Response
System monitoring
Tools: Wireshark, Splunk, Crowdstrike
Intrusion Detection System (IDS)
Threat Management
Vulnerability and Penetration Testing
Risk Management & Assessment
Data Security & Privacy
Network Monitoring
SIEM Management
Adaptability
Due diligence
Teamwork and Collaboration
Audit Coordination
Documentation skills
Critical & Analytical Thinking
Log Analysis
Certification
CISSP certification scheduled for December
References
References available upon request.
Timeline
Security Compliance Analyst II
LEXISNEXIS, Dispute & Resolution
08.2021 - Current
SOC Analyst
GEHA (Contract Weekend Shift)
08.2020 - 09.2023
Security Analyst (Weekend Shift)
Linq3
04.2016 - 01.2019
Linux Systems Administrator
Southeastern Data Cooperation
03.2016 - 07.2021
Linux /Unix System Administrator
Primerica
11.2000 - 03.2016
CISSP certification scheduled for December
Associate of Science - Cybersecurity Program
Gwinnett Technical College
Bachelor of Science - Business /Marketing
Albany State University
Similar Profiles
Tina JonesTina Jones
Security Compliance Analyst II at LEXISNEXIS, Dispute & ResolutionSecurity Compliance Analyst II at LEXISNEXIS, Dispute & Resolution