Senior It Security And Risk Analyst
CurrentManages the company's vulnerability management program.Manages the organization's patch management program and penetration testing.Responsible for producing the Annual IT Risk Assessment for the organization. Responsible for managing a variety of risk elements and controls in a technical environment. Evaluates technical and procedural risks and provides recommendations on changes. Serve as primary liaison with Compliance/Risk-Management and Audit departments regarding control development, testing and possible remediation. Provides input to IT audit responses and ensures potential findings are remediated per commitments. Recommends changes to controls to enhance security posture. Identifies and implements appropriate technical security frameworks (e.g., NIST, ISO). Develops and documents written procedures. Reviews vendor technical environments for potential risks, documents findings and identifies practical risk reduction strategies. Performs a variety of risk assessments. Assists with potential remediation of technical vulnerabilities, investigating exposure and tracking progress, both internally and with vendors. Monitor patching program for applications, operating systems and appliances. Assists with IT security changes.Served as True Blue Ambassador for Capitol Federal®, enhancing and strengthening the employeeexperience for our employees from 2022-2024.