Annika Crawford

Education: Cybersecurity

Management and Policy

University of Maryland Global Campus

2017 : 2021

Associate of Arts (A.A.)

Finance, General

Carroll Community College

2011 : 2015

Experience: Using the Risk Management Framework (RMF), as well as best practices, policies and procedures, I am able to assess the security posture of various systems and applications for our client. By completing an Information Categorization and a Security Assessment Plan (SAP), I test the implementation of selected NIST 800-53 Rev. 5 security controls. In doing so, a Security Assessment Report (SAR) and System Security Plan (SSP) are created, outlining the results of testing, and proposing Plans of Action and Milestones (POA&Ms) to remediate any found risks to the system/application. This continuous monitoring process is repeated annually in to receive Authorization to Operate (ATO).

Additional efforts are made to assist our clients in completing various system documents, whether it be privacy documents such as a Privacy Threshold Assessment (PTA) and a Privacy Impact Analysis (PIA), or a Business Impact Analysis (BIA).

Furthermore, as a team lead I am responsible for overseeing multiple security assessments and multiple teammates. This role includes holding my teammates to high standards by reviewing their work for complete accuracy and making sure that the work is the highest quality prior to it being submitted to our clients

2023 : Present

EY

Senior Cybersecurity Analyst - Strategy, Risk, Compliance & Resiliency

Using the Risk Management Framework (RMF), as well as best practices, policies and procedures, I am able to assess the security posture of various systems and applications for our client. By completing an Information Categorization and a Security Assessment Plan (SAP), I test the implementation of selected NIST 800-53 Rev. 5 security controls. In doing so, a Security Assessment Report (SAR) and System Security Plan (SSP) are created, outlining the results of testing, and proposing Plans of Action and Milestones (POA&Ms) to remediate any found risks to the system/application. This continuous monitoring process is repeated annually in to receive Authorization to Operate (ATO).

Additional efforts are made to assist our clients in completing various system documents, whether it be privacy documents such as a Privacy Threshold Assessment (PTA) and a Privacy Impact Analysis (PIA), or a Business Impact Analysis (BIA).

Furthermore, as a team lead I am responsible for overseeing multiple security assessments and multiple teammates. This role includes holding my teammates to high standards by reviewing their work for complete accuracy and making sure that the work is the highest quality prior to it being submitted to our clients.

2022 :

EY

Cybersecurity Analyst - Strategy, Risk, Compliance & Resiliency

Using the Risk Management Framework (RMF), as well as best practices, policies and procedures, I am able to assess the security posture of various systems and applications for our client. By completing an Information Categorization and a Security Assessment Plan (SAP), I test the implementation of selected NIST 800-53 Rev. 5 security controls. In doing so, a Security Assessment Report (SAR) and System Security Plan (SSP) are created, outlining the results of testing, and proposing Plans of Action and Milestones (POA&Ms) to remediate any found risks to the system/application. This process is repeated annually in order maintain continuous monitoring and to receive Authorization to Operate (ATO).

2021 :

EY

Cybersecurity - Strategy, Risk, Compliance & Resiliency Associate Analyst II

As the sole leasing coordinator, I was responsible for all leases and applications for the many residential properties that our company manages. Daily tasks included screening applicants, performing background checks, and writing leases while adhering to all local, state, and federal laws governing this industry. Attention to detail was vital in this role in order to execute accurate contracts. Each day, I utilized problem solving skills to mitigate situations between our properties, homeowners, and tenants. I also coordinated all move-ins and move-outs, assisted in training new employees, and provided excellent customer service. Many of my tenants and homeowners even left me 5-star reviews on our Google and BBB pages.

I also multitasked my daily role with coordinating contracts and transactions for residential sales, and assisted our accounting department with reconciliations and bank transfers.

2020 : 2021

Red Wagon Properties

Property Management

Human Resources : Provided HR support to employees. Performing drug screenings for pre-employment candidates, manage new hire paperwork, complete I-9 paperwork, safety testing, complete employee injury and accident reports, update division policies annually, and educate employees about benefits and open enrollment.

Payroll : weekly payroll, subcontractor pay, vacation requests, tool deductions, and direct deposit setups.

Office Admin : order office supplies, schedule appointments with builders and homeowners, renew field technician’s licenses, pull building permits, responsible for utilities, trash pick-up, and annual building inspections.

Accounts Payable/Bookkeeping :

Three-way way match purchase orders to ship tickets and invoices, code invoices to be paid, record expenses into the statements log/bookkeeping, reconcile company credit card expense reports, responsible for interdivisional transfers, check requests, log, pay, and manage commission payments to our outside salesmen.

Report Analysis : create, evaluate, and compile end of month reports including inventory and accruals, aging, collections, billing, and back charges. Reconcile general ledger activity reports for three divisions. Evaluate expenses for prepaid accounts to determine whether they will be accrued or expensed. Meet deadlines every month.

2018 : 2020

IES Residential, Inc.

Administrative Assistant

Company: EY

Years of Experience: 8

Spoken Language: English