Information Security Analyst
Current• Conducted risk assessments and gap analysis to identify potential security vulnerabilities, and developed remediation plans to address them.• Coordinated with cross-functional teams to ensure compliance with regulatory requirements and internal security policies.• Developed and maintained security documentation, including System Security Plans (SSPs), Plan of Actions and Milestones (POAMs), and Security Assessment Reports (SARs).• Led compliance audits and assessments, and provided guidance to management and staff on audit findings and recommendations.• Participated in the development and implementation of security awareness training programs for employees.• Managed security incidents and conducted forensic investigations, ensuring timely resolution and mitigation of any security breaches.• Conducted vendor risk assessments to ensure that third-party vendors and suppliers complied with the company's security policies and standards.• Monitored and reported on compliance with security controls, and developed metrics to track performance and identify areas for improvement. Researched and developed new computer forensic tools.