Trevin Haseltine
Sacramento,CA
Summary
Accomplished IT Security Risk Manager with extensive experience in managing and mitigating cybersecurity risks. Proven ability to lead the reduction of vulnerabilities and enhance security posture through effective collaboration, strategic policy updates, and comprehensive risk assessments. Expertise in utilizing industry frameworks such as NIST 800-53, and skilled in implementing security tools, conducting audits, and fostering a culture of readiness. Adept at risk analysis, incident response, and ensuring regulatory compliance. Strong technical background in Python and a track record of driving security initiatives that align with organizational goals.
Overview
2
2
years of professional experience
Work History
IT Security Risk Manager
University Of California, Davis
03.2022 - Current
- Managed the remediation of 29 penetration test findings, reducing them to two within one year through effective collaboration with development teams, ensuring system and data integrity.
- Managed the mitigation of 28 risks following NIST 800-53 moderate guidelines, reducing them to 4 through effective collaboration with development teams.
- Created and facilitated 10+ BCP, IRP, and Disaster Recovery tabletop exercises to foster team readiness.
- Owned and executed three annual Phishing campaigns to raise awareness and defenses against social engineering attacks.
- Took ownership of all security-related policies and procedures, frequently providing updates that align with industry best practices and organizational goals.
- Conducted over 20 Vendor Risk Assessments (VRAs) to evaluate organizational use cases, classify data, and assess the risks associated with vendor implementation, ensuring informed decision-making and enhanced security posture.
Education
Master of Science - Information Systems
Boston University
Boston, MA08.2024
Bachelor of Arts - Legal Studies
University of California, Berkeley
Berkeley, CA05.2017
Skills
Technical Skills: Python, compliance requirements (eg, GDPR, HIPAA, PCI-DSS, SOX), SIEM, risk assessment frameworks (eg, NIST 800-53, ISO 27001, CIS Controls), Nessus, CrowdStrike, Splunk, SonarCloud, Snyk, GitHub Advanced Security, AWS Inspector
Analytical Skills: Risk analysis and mitigation strategies, application security assessments, network protocols and architecture, cloud security principles, incident analysis and response, policy and procedure analysis
Accomplishments
2023 UC Tech Award for Information Security Excellence
- An annual award given to one team across all UCs for exceptional accomplishments in information security.
Projects
- Tabletop Exercises: Created tabletop exercises (with scenarios) to enhance team preparedness and response strategies for potential security incidents. These exercises fostered a culture of readiness and improved incident response times by 25%.
- GitHub Advanced Security Implementation: Led the implementation of GitHub Advanced Security to identify and manage dependency, container, and package vulnerabilities, providing developers with essential tools to strengthen our applications. This initiative improved application security and reduced the risk of potential threats by 40%.
- Risk Assessment Leadership: Led comprehensive risk assessments, conducting interviews with key stakeholders to identify and evaluate potential risks. This process highlighted critical vulnerabilities, enabling targeted mitigation efforts and reducing overall risk exposure by 85%.
Timeline
IT Security Risk Manager
University Of California, Davis
03.2022 - Current
Master of Science - Information Systems
Boston University
Bachelor of Arts - Legal Studies
University of California, Berkeley
Similar Profiles
Sherry Austria-LumauodSherry Austria-Lumauod
Chronic Kidney Disease Care Manager at University of California, Davis Health SystemChronic Kidney Disease Care Manager at University of California, Davis Health System
NATASHA M. HADDALNATASHA M. HADDAL
Associate Instructor at University of California, DavisAssociate Instructor at University of California, Davis
Aydin AnandAydin Anand
Research Assistant at University of California, DavisResearch Assistant at University of California, Davis
Steven NguyenSteven Nguyen
BFTV Student Analyst at University of California, DavisBFTV Student Analyst at University of California, Davis
Bonnie StanleyBonnie Stanley
Radiologic Technologist IV at Kaiser PermanenteRadiologic Technologist IV at Kaiser Permanente