The Information Security Risk & Compliance Analyst is responsible for supporting and maintaining the information security program to ensure that information assets and associated information systems are adequately protected in the digital ecosystem in which Wawa operates.This role supports all day-to-day operations, functions and capabilities relating to technology risk and compliance. The role supports the Information Security compliance program and is responsible for operating technology risk management processes, maintaining technology related Information Security policies, and completing risk assessments of technology related initiatives.

Maintain and Manager Security Related RequestCollaborate with other non-security teams to drive security initiativesAct the primary relationship manager for third party vendorsCollaborates in accomplishing Risk and Gap analysisTest and implements new information security software packagesPurple Team member

Test, build and deploy Symantec Control Compliance Suite infrastructure with the teamMaintain and Monitoring the CCS agents on the Target hosts and installing new agents as neededContinually manage the tool upkeep and management (Administration, backup co-ordination, patchmanagement, etc.)Collaborate and analyze compliance scan results and resolve the errors

Conducts gap analysis within the Security Enterprise/InfrastructurePrimary/Led Compliance Security EngineerRelationship Manager for TenablePrimary Security Software ValidatorCo-Championed the Vulnerability Management Program from ground upPrimary Engineer in charge of conducting infrastructure Vulnerability Scans and Remediation.Validate and Audit Corporate Policies and ensure the correct controls are in place and used,I validate and test internal security controls and tools to ensure corporate data is not compromised.Championed the collaboration between Infosec and the other Organizational Units

Conducts gap analysis within the Security Enterprise/Infrastructure.I over saw Decisivedge Compliance Program by developing Polices in combination of suggestingtechnologies.Constructed and organized the 1st version Change Management program.Coordinates with external Security Vendors to ensure the company’s needs are met.

Identify opportunities to improve third party risk posture, and mitigate risks exposure to risk.Communicate with vendor’s third party’s senior managers to communicate and influence best risk practices.Drive all aspects of the risk assessment of third party service providers.Leads the onsite assessment, providing the overall IT Risk expertise.Support internal education and best practice sharing with peers and colleagues, as well as third party

IT- Systems Security Leader Designed and developed the complete Infosec Department Maintainer of Complacency for all workstations/server/networking devices under EU and CommonCriteria Laws Solely developed and built in ISO 27001 Complacency for Jago Solely responsible for Internal Information Technology Investigations Solely responsible and accountable for all Computer Forensics activities Developed, trained and maintained internal Audits with Risk Assessments determinants. Conducted Multiple kinds of Audits remotely and on site. Led a team 4 members that are remote are all in remote locations Trained 2 personal for the position of a Security Systems Administrator and 1 person as the Systems Security Engineer. Architected, Configured and maintain Active Directory within Jago in a hybrid environment to confirm to ISO 27001 Standards. Developed the Incident Response and the Vulnerability Assessment program for Jago Developed the PKI Program for Jago Primary flyaway Project Manager/Engineer with 100% success Designed Jago's Security Operation Systems Center

Directly responsible for the installation, securing, patching and routing all the servers within the company. Aided all Customers with their needs for Linux and provide the what one would call Customer Care for them which in most cases Basic Linux Care and Basic Linux Understanding

Company Intelligence Support Team Leader.Designed and implemented a mobile tactical operation center while in theater.Processed and led Key Leader Engagements, which led to key individuals being detainedPrimary lead for conducting tactical searches and exploiting of digital mediaPrimary Electronic Warfare Non-Commission Office in chargeFluent with all Electronic Warfare device for our Area of Managed Aerial platforms for the protection of troops in multiple area’sDiscovered, Tracked and Exploited various electronic devicesDirectly responsible for 20 personal at various levels and managed over 1 million dollars of specialty equipment with 100% accountability at all timesPrimary Counter Improvised Explosive Device Non-Commission Officer in ChargeConducted briefing of formal analytical work for capturing of high value hard and soft targets.Conducted many different training scenarios for over 300 soldiers as the Opposition Force Non-Commission Officer in ChargeTrained over 300 soldiers with defensive measures for Countering IED’s.

Configuration Manager of UNIX and Windows servers Configured and Maintained Servers and Workstation in accordance to NISPON standardsMaintained 95% server uptime for the THADD Systems Constructed, architected, operated, and maintained a Mobile Satellite Operations Center. Improved the Remote Satellite Trailer (RST), which was placed in production for Raytheon Lead Systems Administrator for the THADD program, maintaining and supervising the maintenance. Trained personnel with computer applications and network security issues, which eventually led the facility in having one of the lowest sites to having security issues.Led nightly maintenance of all the Information Assurance servers, workstations and data-bases enterprise wide on the Navy and Marine Corp Internet (NMCI).Subject Matter Expert for various software packages. Intrusion Detection Systems Penetration and Vulnerability Testing Total Operation of Antivirus software suite Built a Quality Assurance Testing Lab, leading a 4 person team to conduct product testing and validation. Led a team of 3 people for internal investigation and prosecutions. Produced formal and informal reports for government and non-government personal, which was used for investigations and prosecution.

Served as the Primary Intelligence and Computer Representative for my Boat Crew.Provide telecommunications and computer-related training and assistance.Operate and maintain a global satellite telecommunications system.Coordinated automated networks, data-links and circuits.Preformed world-wide missions related to Humanitarian assistance, Direct Combat action and Digital Reconnaissance.

Customer Care is dedicated to keeping customers' traffic flowing on the Internet. The Customer Care Support Intern performs basic engineering tasks including data collection, computation, analysis and research in support of other Technical Support Engineers. We had to generates reports, provides recommendations and conclusions. I always interacted with customers and understands customer requirements as well as proposes and implements solutions to satisfy customer needs.I worked closely with senior engineers to troubleshoot issues and implement fixes.

I was one of 3 initial Systems Administrator, while working there at Websidestory we started the flagship program as Hitbox then the company grew from there to eventually going pubic and then the company was sold.As a systems administrator we where directly responsible for 30 FreeBSD, with various programs running on them from Sendmail to Apache to maintaining DNS and Web Hosting for multiple clients.We where the technical interface for the company to the client. We where in charge of the total infrastructure and eventually the migration of the data-center.