+ Analyzed and conducted security assessments of over 100 vendor SOC2 Type2 Reports to determine compliance with applicable security controls and standards (NIST SP 800-53 Revision 5.1) to ensure controls were implemented correctly, operating as intended and producing the desired outcomes in relation to applicable regulatory and industry requirements. + Designed, implemented and coordinated the compliance reporting process for external vendors. Responsible for building and maintaining a strong level of customer service provided support to state agencies for mandated compliance in screening outside vendors for conformity with applicable state regulatory and industry requirements for information security. Developed tracking documentation to manage received SOC2 Type2 Reports, organize reviews and maintain artifacts and documentation using approved system tools.+ Developed infrastructure and IT Process assessments for use across organization’s computing environment. Identified areas for business improvements. Performed systems security evaluations, audits, and server logging reviews to verify secure operations. Applied Risk Management Framework (RMF) using NIST as guide for assessments and CM.+ Conducted risk assessments by analyzing SOC2 Type2 reports to mitigate the risk of information loss and determine gaps in information processes and procedures.+ Assisted with Security and Information Systems management, the Legal department, Fraud department, Human Resources and law enforcement agencies to manage security vulnerabilities or inquiries. Ensured security controls were implemented correctly, executed per design and provided appropriate results.

During my 20+ years at State Farm, I have evolved from a mainframe COBOL/JCL programmer into a well-rounded Systems Analyst. I have experience with every aspect of development, and service, from gathering and analyzing requirements through development, test, implementation and service, and have experience working on both customer-facing and internal applications. I have an insatiable appetite to continue to evolve and to learn new things. Because of this, I have gained a reputation as a “swiss-army-knife” of IT, and have active experience with HTML, CSS, XML, Javascript, SQL Java, VB.net, DB2, Qlikview and Splunk. I have worked in both a SAFe Scrum and Waterfall environments, using HP Service Desk, TortoiseSVN, GIT, Lotus/IBM Notes, Eclipse, WinSQL and Selenium. I have extensive experience developing and servicing applications in the Accounting/Financial and Medical Billing fields and have extensive knowledge of ICD9 and ICD10 codes as well as Medicare Regulations. Requirements Analysis | Documentation | Interface Design | Development |Customer ServiceAgile Development Methodologies / Scrum | HTML | CSS | XML | XSL | JavaScript | ASP | VB | SQL | DB2 JAVA | J2EE | Splunk | QlikView | COBOL | JCL | ICD9 | ICD10 | Medical Billing

Organized on-air broadcasts, created a schedule for songs, advertisements and public service announcements based on contracts, regulations and format of the station. Hosted on-air segment from 5 p.m. to 11 p.m. Monday - Friday.