Whitney Maye
Chesterfield,VA
Summary
Directed project teams to achieve measurable outcomes in dynamic environments. Oversaw operations across multiple countries, enhancing project management and cybersecurity practices. Cultivated a comprehensive understanding of program management and process improvement to meet senior leadership expectations.
Overview
5
5
years of professional experience
1
1
Certification
Work History
Audit Manager – Internal
CGI
04.2024 - 01.2025
- Oversaw the development and execution of audit initiatives to enhance client compliance and risk posture:
- Developed and implemented comprehensive internal audit policies and procedures for security consultants to enhance consistency across engagements.
- Designed and executed an innovative audit process based on NIST 800-53 Revision 5, enabling seamless client transitions from Revision 4.
- Delivered training and mentorship to audit team members, strengthening their skills in compliance evaluation and reporting.
- Identified systemic security vulnerabilities and devised tailored remediation plans to improve client network compliance and risk posture.
Contract Security Manager
CGI
01.2023 - 04.2024
- Oversaw the implementation of security protocols and solutions within my client organizations to safeguard their information systems against potential cyber threats by conducting the following duties and responsibilities:
- Develop, implement, and monitor comprehensive cybersecurity programs and policies
- Identify potential vulnerabilities and implement measures to prevent security breaches
- Oversee the installation, maintenance, and troubleshooting of cybersecurity systems and software
- Conduct regular system audits to ensure the effectiveness of security measures
- Coordinate with different departments to ensure cybersecurity awareness and compliance
- Manage the response to any cyber incidents, including conducting a thorough investigation and ensuring corrective measures are taken
- Stay updated with the latest trends in cybersecurity and adapt strategies accordingly
- Establish disaster recovery procedures and conduct regular drills to ensure the readiness of the team
- Manage relationships with third-party vendors and service providers to ensure they comply with the company's cybersecurity policies
Client Engagement Manager
CGI
06.2022 - 01.2023
- Fostered a positive relationship with the client to ensure customer satisfaction through frequent communication and trust-building by conducting the following:
- Identifying potential issues and resolving them before they escalated
- Facilitating communication between the client and the company
- Coordinating with internal teams to ensure client work is completed on time and within budget
- Delivering regular reports and updates to the client
- Identifying opportunities for revenue growth within existing client relationships
- Developing and implementing strategies for client retention
- Managing conflict between the client and the company
Lead Information System Security Officer
CGI
06.2021 - 06.2022
- Ensured the security and privacy of information systems by conducting the following:
- Overseeing the security and privacy posture of the system(s) entrusted to my care. Ensured compliance with federal security requirements and managed cybersecurity and privacy risk.
- Coordinated information system risk management activities. Assessed and advised stakeholders on known risks, helping maintain secure environments.
- Addressed security questions and needs related to the system.
System Security Program Manager
CGI
01.2021 - 06.2021
- Responsible for the cost, schedule and technical performance of locality assistance programs and initiatives. Directs all phases of the Security Program Initiative from inception through completion.
- Establishes milestones and monitors adherence to master plans and schedules, identifies program problems and obtains solutions, such as allocation of resources.
- Identifies and mitigates program risks and issues.
- Acts as primary contact for program activities, leading program review sessions with Advisory Group members to discuss trends, risks, and compliance performance.
Lead Information Security Officer
CGI
01.2020 - 01.2021
- Evaluated and monitored all aspects of client security to ensure compliance with security standards enforced by the national regulations. Performed Risk Assessments to track compliance. Co-facilitated an advisory group made up of representatives from varying sizes encompassing input from both General Board Members and IT staff.
- Conducted risk assessments and compliance tracking enterprise wide
- Co-developed and implemented client-based Governance Framework Models
- Co-developed client standard Information Assurance and POA&M Tracker Models
- Co-facilitated Advisory Groups to assist in the organization/prioritization of critical security risk postures, plan initiatives to help mitigate risk posture, and implement solution strategies
Education
Bachelors (BA) - IT Management
Western Governor's University
Masters (MBA) - IT Management
Western Governor's University
Associates - Network and Systems Administration
ITT Technical Institute
01.2016
Advanced Diploma - undefined
Manchester High School
01.2009
Systems Administration Diploma - undefined
Chesterfield Technical Center
01.2008
Skills
- Conducted thorough assessments to evaluate risks and enhance organizational resilience
- Led initiatives to enhance cloud security frameworks across multiple projects Oversaw the integration of advanced security technologies to safeguard cloud infrastructures Collaborated with stakeholders to establish best practices for cloud security management
- Managed incident response efforts to ensure swift resolution of security breaches
- Implemented innovative solutions to streamline processes and improve productivity
- Configured and maintained Red Hat environments to support organizational IT infrastructure
- Led initiatives to implement Burp Suite for comprehensive web application security assessments Oversaw the identification and analysis of security vulnerabilities to enhance application integrity Collaborated with cross-functional teams to develop strategies for risk mitigation
- Led initiatives to enhance network monitoring capabilities through effective use of Wireshark Oversaw training sessions for team members on packet analysis techniques to improve troubleshooting efficiency Developed strategies to optimize network performance based on analysis results
- Formulated and implemented IT governance frameworks to enhance organizational efficiency
- Oversaw network security initiatives to protect sensitive information from unauthorized access Coordinated with IT teams to develop and enforce security policies across the organization Led training sessions to enhance staff awareness of security best practices
- Implemented comprehensive vulnerability management strategies to enhance organizational cybersecurity posture
- Developed and implemented frameworks for governance, risk management, and compliance to support regulatory adherence
- Developed and implemented risk management frameworks to enhance organizational resilience
- Oversaw comprehensive project and program management processes to enhance operational efficiency and stakeholder satisfaction
- Led training programs to foster employee growth and development Oversaw the implementation of development strategies to align with organizational goals Championed continuous learning initiatives to enhance team capabilities and performance
- Risk Management
Certification
- USA Advanced Individual Training (AIT) May 2014-October 2014 – Certificate of Completion Information Technology Specialist
- New Horizons December 2018 – Certified Ethical Hacker Certificate of Completion
- WGU Credentials – Business Essentials, Applied Business, Management, Human Resource Management
- Skillsoft Credentials – Leading with Executive Presence, Inclusion, Coaching, Decision Making Expert, Critical Thinking Expert
Languages
English
Language
Industry experience
- Department of Defense
- Federal Government
- Local and State Government
Technical specializations
- Security Frameworks and Standards
- Risk Management
- Cloud Security
- Network Security
- Endpoint Security
- IAM
- Incident Response/Threat Intelligence
- Compliance
Areas of expertise
- Project Management / Controlled Audits
- Information Assurance / Risk Management Framework
- Network Management / IT Infrastructure
- Process Improvement
- Vulnerability Assessment
- Penetration Testing/ Network Hardening
- Training / Development
- Research / Analysis
- Network Security / Compliance (NIST 800, CIP, FEDRAMP, HIPPA, NERC)
- Incident Response
- Change Management / Network Monitoring
Environments
Windows | Unix/Linux | Mac
Tools & software
Microsoft Office | SharePoint | SQL Server | Active Directory | Windows Defender | Baseline Security Analyzer | Red Hat | Fire Eye | Burp Suite | OpenVAS | Splunk | Wireshark | Tenable
Timeline
Audit Manager – Internal
CGI
04.2024 - 01.2025
Contract Security Manager
CGI
01.2023 - 04.2024
Client Engagement Manager
CGI
06.2022 - 01.2023
Lead Information System Security Officer
CGI
06.2021 - 06.2022
System Security Program Manager
CGI
01.2021 - 06.2021
Lead Information Security Officer
CGI
01.2020 - 01.2021
Bachelors (BA) - IT Management
Western Governor's University
Masters (MBA) - IT Management
Western Governor's University
Associates - Network and Systems Administration
ITT Technical Institute
Advanced Diploma - undefined
Manchester High School
Systems Administration Diploma - undefined
Chesterfield Technical Center