SUMMARY:

Experienced IT consultant with over 6 years of professional experience in driving excellence in Cyber Security, self - study experience in AWS Compute services, self-motivated & result oriented. Seeking to transition to a new role focused on AWS after a career as an IT Cyber Security. Knowledgeable and experience in architecture, configuration, deployment, and maintenance, and of AWS Services.

TECHNICAL SKILLS:

Computing: Requirement Gathering AWS Setup & Architecture Troubleshooting User Authentication&Access Stakeholder Management Automation Load Balancing Cloud Deployment Cloud Setup & Management CSAM Cloudwatch EC2

OS: Windows, Linux

PROFESSIONAL EXPERIENCE:

Confidential

Junior AWS Cloud Engineer

Responsibilities:

• Assisted with monitoring AWS services and resources using CloudWatch.
• Create and implement CloudWatch alarms and SNS notifications to monitor AWS services.
• Define security groups depending on the parameters of access given
• Maintained the user accounts (IAM), RDS, ROUTE53, VPC, RDB, SES, SQS and SNS services in AWS cloud.
• IAM administration (created users, groups, roles, policies).
• Create IAM user accounts and role-based policies for access to AWS services.
• Managed IAM
• Created high Availability and Disaster Recovery options for RDS.
• Archived outdated data to Glacier through Life Cycle Policy configuration.
• Use management console to provision AWS resources.

Confidential, Fairfax, VA

Cyber Security Analyst

Responsibilities:

• Initiates and track remediation of vulnerabilities as they are uncovered using POA&M
• Achieved full closure of prior year findings and no new findings for Audit managed.
• Analyze over 100+ provided by Client (PBC) items for completeness and accuracy.
• Review and delegate tasks to team members for the delivery of PBC items.
• Created a tracking system for management for PBC items (in July 2018) that was adopted for every future audit.
• Created documentation of repeatable procedures to contribute to efficiency and provide enriching data to other analysts.
• Facilitate audit prep, and official audit meetings as the in between link of business and technical control functions.
• Participate in team kick-off and walkthrough meetings.
• Wrote management responses for final findings reporting stages of audits through factual accuracy checks.
• Analyzed, reviewed, and managed Plan of Action and Milestones
• Maintains FISMA compliance and Authority to Operate (ATO) for systems per the NIST SP Risk Management Framework (RMF).
• Support with walkthrough meetings and provided accurate and comprehensive audit status reporting to all levels of leadership.
• Perform POA&M review on open and close POA&Ms, assess quality of artifacts, and identify gaps.
• Work with audit and assurance teams and the client to plan engagement strategy, define objectives, and address technology-related controls risks and issues.
• Engage client management and staff at all levels to conduct audit services
• Ensures all POA&M actions were tested and completed in accordance with project deadlines
• Prepares and provides evidence artifacts to support security controls assessment efforts
• Worked with Engagement Team to identify and resolve client issues discovered during Audit and Review Process.

Confidential, Tysons Corner, VA

Federal IT Associate

Responsibilities:

• Reviewed the IT audit programs segments after audit and updated the test procedures to adhere with corporate IT policies and instructions.
• Performed audit planning, conduct walkthroughs, and assess the internal control environment through control testing.
• Gathered information from client personnel and organize findings in order to provide the client with recommendations based on test work results.
• Documented test procedures conducted during audit fieldwork and uploaded the evidence via Teammate for management review and approval.
• Performed audit planning, conduct walkthroughs, and assess the internal control environment through control testing.
• Conducted follow up meetings to assist information system owners and contractors to close POA&M items.
• Evaluated controls in place at the service organization that is relevant to their user organizations and issuing a report that attests to whether the company's description of controls is accurate.
• Updated and managed recommendation reports that are made available to system owners to remediate identified vulnerabilities during the risk assessment process.
• Assisted POA&M Lead in monitoring risk-based decisions on POA&Ms.
• Secured and enhanced relationships with senior client management and delivering value to the client by providing knowledge, ideas and solutions for improving their business.
• Performed Federal Compliance and Financial Audits by developing the Audit programs, conducting audits, preparing work paper and audit reports using FISMA, NIST, and FICAM frameworks.
• Updated SOX documentation, including flow charts, process narratives, risk and control matrices as well as support for new or modified controls to ensure documentation is current and in line with Company policies.
• Conducted IT testing of general and application controls including segregation of duties and access controls within application
• Collaborated with IT staff, Managers/Director and Partner to create the FISMA binder and requested for all supporting document to meet compliance.