Cybersecurity Project (Discovery, PEN Testing, Threat Assessment)
- RAID Log (i.e., Risks, Actions, Issues and Decisions) and correlation to deliverables/milestones per MS Project
- Managed budget, scope and schedule for security initiatives within a formal process, while maintaining key artifacts
- Led a Use Case Architecture (UCA) discussion using MS Visio to capture and depict scope at a macro level
- Deliverables: Security, Privacy and Risk
Cybersecurity Risk Management Framework (RMF) Integration
- Developed project plans and weekly status reports
- Identified and communicate project risks, key decision, and dependencies.
- Creation of actionable metrics, Key Risk Indicator (KRI), and reporting/dashboards for diverse audiences, from line managers to Board members
- Analyzed security systems and seek improvements on a continuous basis
- Created and maintains enforceable Information Security related procedures and supporting processes
- Collection of legal & regulatory requirements with regards to Information Security to enrich the Information Security Management System (ISMS)
- Executed and monitors overall security events and the security awareness program
- Liaised between the business and local IT groups
- Updated information security reports and KPIs, as assigned
- Reported possible threats or software issues
- Researched weaknesses and find ways to counter them
- Researched, Analyzed and Reported cost-effective solutions to cybersecurity problems