Information Security Analyst
CurrentI am the lead analyst over the Enterprise Identity Governance Administration (IGA) program in this position. This has involved documenting all procedures, ensuring that they remain updated, implementing and operationalizing industry leading tools and technologies to facilitate a successful IGA program (e.g. IdentityNow), managing the team assisting said program, and ensuring that the program remains operationally effective and audit ready. I've established a significant number of monthly, quarterly, and annual access reviews for the purposes of maintaining the high level of security expected of us by our stakeholders, members, and internal and external auditors (namely SOX auditors). After audit, I am responsible for ensuring that potential security gaps are closed in the pursuit of perfection and continuous improvement. During my time as a risk analyst I’ve also gained a significant amount of experience doing third-party/vendor reviews and self-risk assessments. The results of these assessments then get reported to vendor management or upper management. While in this position I've also gained experience monitoring and fielding a Phishing mailbox, where users can report suspicious emails, and performing QA for the IT ticket and business request systems