Information Security Auditor
Current• Perform detailed technical security evaluations of third-party companies' information systems to ensure compliance with the FBI’s Criminal Justice Information Services (CJIS) Security Policy, (Similar to NIST 800-53), and security best practices• Review security and network architecture and data flow diagrams; provide recommendations to meet CJIS compliance requirements and ensure systems Defense in Depth• Develop scripts for Linux and Windows as well as automated tools to improve audit workflows and evidence collection/review• Research cybersecurity and IT solutions, products, and strategies to validate that security controls are implemented correctly