Summary
Overview
Work History
Education
Skills
Pronouns
Timeline
Generic

Trinity Nsom

Houston,TX

Summary

Certified security professional with 8+ years of experience in cybersecurity, IT audits, cloud computing, and asset management. Proven expertise in federal regulations (FISMA, FISCAM, HIPAA, OMB, FIPS) and NIST SP 800 series, supporting U.S. government agencies. Strong communication skills in English and French, with excellent problem-solving and time management abilities.

Overview

11
11
years of professional experience
13
13
years of post-secondary education

Work History

Security Consulting Practitioner/ISSO

Accenture Federal Services (AFS)
NW, Washington DC
9 2023 - Current
  • Performs internal control testing, enhances key documentation, and redesigns controls for information systems as part of the final step of the Risk Management Framework process (continuous monitoring)
  • Leads the OMB M-21-31 compliance project across all systems on the project workstream, working closely with the organization’s executives, senior management teams, and Splunk administrators to ensure that security monitoring (audit logging) requirements meet the OMB M-21-31 executive order
  • Streamlined operations and prioritized tasks, by developing of a comprehensive dashboard using Microsoft Excel to track continuous monitoring efforts for systems lacking Power BI, contributing to project cost savings
  • Collaborates with system administrators and the Independent Verification and Validation (IV&V) team to close ten outstanding Plan of Action and Milestones (POA&Ms) from previous assessments.

Cybersecurity and Compliance SME/ISSO

KFORCE
NW, Washington DC
12.2022 - 09.2023
  • Followed NIST 800-60 Volume 2 and FIPS 199 guidelines to categorize information systems, select information types, and used NIST 800-53R5 as a guide to choose security controls for assigned systems
  • Developed and documented security control implementation statements based on the selected security controls
  • Coordinated and collaborated with various stakeholders to identify and mitigate vulnerabilities in assigned systems
  • Led the Authorization to Operate (ATO) process for assigned systems from RMF Step 1 through Step 4, following the NIST SP 800-37r2 guidelines
  • This effort resulted in a 3-year ATO for all systems.

Senior Audit Laison Analyst

11th Hour Services
Arlington , VA
02.2022 - 12.2022
  • Managed all audit remediation efforts to remain aligned with financial audit, allocating resources appropriately based on identified risks
  • Developed and implemented processes to respond to financial audit Prepared By Client (PBC) requests
  • Supported the planning and execution of activities to ensure long-term FISCAM control compliance
  • Responded to audit-related data calls promptly, accurately, and comprehensively
  • Facilitated the identification and remediation of deficiencies to support financial, operational, and compliance objectives.

Information Assurance Analyst/Security Data Transfer Engineer

Blue Glacier Management Group Inc.
NW, Washington DC
02.2020 - 02.2022
  • Supported the Committee on Foreign Investment in the United States (CFIUS) by analyzing approximately 20 declarations and notices submitted by foreign investors through CRM Dynamics per day
  • Performed weekly comprehensive audits and quality assurance checks on all Department of the Treasury networks
  • Collaborated with software developers and product owners to understand client deliverables and project requirements
  • Monitored and reported data spillage incidents across all department networks.

Asset Management Analyst /92A

US ARMY RESERVES
Aberdeen Proving Ground, Maryland
04.2015 - 04.2021
  • Implemented and maintained standardized asset management processes and documentation, increasing efficiency and reducing manual errors
  • Developed and maintained detailed asset records and maintenance histories
  • Contributed to development and execution of asset retirement and disposal strategies
  • Developed comprehensive reports and dashboards, providing insights into asset performance, financial impact, and compliance status.

IT Internal Auditor

M9 Solutions at Ernest & Young LLP
Tysons Corner, Virginia
03.2019 - 02.2020
  • Selected controls from the client's internal controls matrix and created a Prepared By Client (PBC) list
  • Conducted a kickoff meeting with clients to introduce the team and finalize the roles of engagement
  • Conducted about 15 audit walkthrough in more than six different locations in United States to help the client prepare for external auditors (KPMG)
  • Held follow-up sessions with system Points of Contact (POCs) to confirm control weaknesses
  • Developed and implemented processes to respond to and track PBCs, monitored Notice of Findings and Recommendations (NFR) remediation, and submitted them for closure.

Security Control Assessor

Washington Tech Solutions Inc
Baltimore, MD
11.2016 - 12.2018
  • Prepared Security Assessment Plans and scheduled kickoff meetings to discuss Rules of Engagement (ROE) and logistics
  • Developed Security Assessment Reports (SAR) and documented identified weaknesses in Security Assessment Report (SAR)
  • Performed POA&M write-ups and provided recommended solutions for identified weaknesses.

Information System Security Officer

Brontech Solutions Inc.
Greenbelt, Maryland
03.2016 - 11.2016
  • Supported and maintained the IT security program to ensure FISMA compliance, including security policies and procedures, audit findings, POA&M management, and responses to audit inquiries
  • Collaborated with system owners to maintain the required security controls environment
  • Assisted the system owner in selecting and documenting security controls using NIST SP 800-53 as a guide after determining system categorization.

IT Asset Receiving Specialist/ Logistics Analyst

Ikun LLC
Alexandria, VA
02.2014 - 03.2016
  • Created work orders, awarded contract information, and packing lists, and obtained government signatures
  • Developed, updated, and reviewed Remedy tickets for assets and transferred them to DPAS and Remedy
  • Created Remedy catalog requests for new products and submitted DISA catalog requests for IT assets
  • Conducted asset management tracking and reporting, improving data quality in the asset management system of records.

Education

Bachelor of Science - Sociology

University of Buea
Cameroon (2013)
06.2024 - 09.2024

Some College (No Degree) - CISA-Certified Information Systems Auditor

ISACA
Chicago, IL
07.2018 - Current

Some College (No Degree) - Security + Certification (2026)

CompTIA
Downers Grove, IL
04.2020 - Current

Some College (No Degree) - CC-Certified in Cybersecurity (2026)

ISC2
Gainesville, FL
09.2024 - Current

Some College (No Degree) - ICP (2027)

ACAgile
Houston, TX
08.2024 - Current

Some College (No Degree) - ITIL V4 (2026)

AXELOS
London, UK
08.2023 - Current

Some College (No Degree) - AWS Certified Cloud Practitioner (2027)

Amazon Web Service
Washington, DC
09.2024 - Current

Some College (No Degree) - AWS Certified Solutions Architect-Associate

Amazon Web Service
Washington, DC
09.2024 - Current

Bachelor of Science - Information Technology

Western Governors University
Salt Lake City, UT
12.2024 - Current

Skills

Experience in Risk Management Framework (RMF) automated processes using eMASS, XACTA, ArchAngel,CSAM

Pronouns

He/Him

Timeline

Bachelor of Science - Information Technology

Western Governors University
12.2024 - Current

Some College (No Degree) - CC-Certified in Cybersecurity (2026)

ISC2
09.2024 - Current

Some College (No Degree) - AWS Certified Cloud Practitioner (2027)

Amazon Web Service
09.2024 - Current

Some College (No Degree) - AWS Certified Solutions Architect-Associate

Amazon Web Service
09.2024 - Current

Some College (No Degree) - ICP (2027)

ACAgile
08.2024 - Current

Bachelor of Science - Sociology

University of Buea
06.2024 - 09.2024

Some College (No Degree) - ITIL V4 (2026)

AXELOS
08.2023 - Current

Cybersecurity and Compliance SME/ISSO

KFORCE
12.2022 - 09.2023

Senior Audit Laison Analyst

11th Hour Services
02.2022 - 12.2022

Some College (No Degree) - Security + Certification (2026)

CompTIA
04.2020 - Current

Information Assurance Analyst/Security Data Transfer Engineer

Blue Glacier Management Group Inc.
02.2020 - 02.2022

IT Internal Auditor

M9 Solutions at Ernest & Young LLP
03.2019 - 02.2020

Some College (No Degree) - CISA-Certified Information Systems Auditor

ISACA
07.2018 - Current

Security Control Assessor

Washington Tech Solutions Inc
11.2016 - 12.2018

Information System Security Officer

Brontech Solutions Inc.
03.2016 - 11.2016

Asset Management Analyst /92A

US ARMY RESERVES
04.2015 - 04.2021

IT Asset Receiving Specialist/ Logistics Analyst

Ikun LLC
02.2014 - 03.2016

Security Consulting Practitioner/ISSO

Accenture Federal Services (AFS)
9 2023 - Current

Similar Profiles

  • Bryonna Dawson

    Bryonna DawsonBryonna Dawson

    Scrum Master at AFSScrum Master at AFS

    View Profile
  • Wong Po Kiu

    Wong Po KiuWong Po Kiu

    NA at AFSNA at AFS

    View Profile
  • Matteo Enrico Ciralli

    Matteo Enrico CiralliMatteo Enrico Ciralli

    Abroad Studies at AFSAbroad Studies at AFS

    View Profile
Trinity Nsom