Accenture Federal Services - Information Security Manager
Current• Supportting multiple contracts simultaneously while delivering high quality solutions to clients. Lead security monitoring activities (Symantec SIM, Arcsight, Splunk), identifying, reporting, and mitigating security incidents according to defined escalation processes. Maintained the integrity of the IT system security controls by conducting periodic security assessments, and ensuring security compliance of the system.• Lead vulnerability scanning and remediation processes and configured tools (Nessus, UPC, and AppScan) to meet program requirements. Compiled monthly dashboard reports to management and lead remediation efforts. Collaborated with system administrators to ensure the required security controls were implemented in accordance with NIST 800-53 requirements. Coordinated the remediation of any security controls found to be deficient during scans, assessments, or internal security reviews.• Lead various compliance activities including the compliance documentation process to ensure the real time accuracy of documents such as the System Security Plan and Risk Assessment. Owned the development and approval of Interconnection Security Agreements. Lead the Security Impact Analysis process for code deployments and changes to the system. Lead all Contingency Plan (CP) related processes such as documentation updates, coordination with the disaster recovery site, and the Tabletop Tests. Served as lead during 3rd party Security Control Assessments to ensure all documentation, applications, processes, and controls are current and compliant to meet FISMA and Client Data Protection requirements in order to maintain the system Authorization to Operate (ATO).