Joseph G.
Education:
Bachelor's degree
CyberSecurity
Kennesaw State University
Cybersecurity (CCNA Cyberops)
Cisco Networking Academy
2017 : 2017
Associate's degree
Computer Information Systems
Atlanta Metropolitan State College (Official)
2014
Experience:
• Report to & assist Vice President of Technology Risk and partner with Risk Management to contribute to technology risk oversight.
• Provides technical assistance, direction, and guidance to maintain an effective and efficient Information Security Program.
• Assists the infrastructure team on technical and architectural issues related to the safeguarding of member data.
• Investigates new Information Security technologies and recommends the best use of technology.
• Interface with credit union departments for training and educating staff on Information Security policies and procedures.
• Works with information technology staff to standardize the access and security privileges for internal systems.
• Participates in application development and infrastructure projects to ensure security requirements are appropriately identified, understood, and satisfied.
• Ensures adequate records are retained and assists with preparing periodic reports as needed.
• Monitor, review & investigates security logs and report findings to the VP of Technology Risk or Internal Auditor.
• Reviews requests and communicates these requests for all connections by third parties and remote users to the internal network and Host processing system.
• Assists with coordination and remediation of external vulnerability and penetration tests.
Actively works with security application vendors to ensure systems are operating correctly.
2023 : Present
Achieva Credit Union
Information Security Specialist
● Apart of PPMG (Pentest Program Management Group) team tasked with managing and coordinating penetration tests for Application/Network vulnerabilities
● Facilitate meetings to deliver all required project management deliverables including progress reports, updates & completed engagement reports of findings to relevant business units and management
● Manage and appropriately escalate delivery impediments, risks, issues, and changes associated with assigned projects
● Coordinate and manage relationships with internal testers & third-party vendors for red team engagements, for assigned managed projects
● Engage with internal business partners to drive the adoption of penetration testing processes.
2021 : 2023
FIS
Senior IT Security Analyst - (Attack Surface Management)
● Assisted efforts to have enterprise assets scanned and monitored to discover, detect and identify security deficiencies and deviations from established standards and policies, and provide an effective solution to mitigate the risk
● Assisted with defining security control implementation and standards based on CIS benchmarks as well as utilizing NIST frameworks (SP 800-128)
● Provide assessments of the status of implementation and operating effectiveness of security controls and policies for the SCM (Security Configuration Management) initiative
● Collected violation/fix-related data, produced metrics, and communicated accordingly
2020 : 2021
FIS
Senior IT Security Analyst - (Secure Configuration Management)
● Security liaison for assigned business units that managed, coordinated, and assisted with vulnerabilities remediation efforts as well as security initiatives
● Maintain and build working relationships for multiple business units, various teams, and levels of management to determine optimal action plans
● Provided vulnerability metrics and reports and their remediation, analyzing trends and reporting results to resolution to relevant business units and management as well as facilitated meetings for remediation efforts
2018 : 2020
FIS
IT Security Analyst
●Manage and execute the day-to-day information security risk and compliance operational activities
●Analyzed, reviewed, and audited customer & client data based upon established company guidelines
●Conducts security compliance program activities as specified in the information security policy to assess compliance with company policies, standards and procedures
●Performing data collection, intelligence analysis, statistical & risk analyses in support of project objectives
2017 : 2018
Equifax
Information Security Compliance Analyst (Contractor)
Company: Achieva Credit Union
Years of Experience: 9
Spoken Language: English