Risk Management - Information Technology Resume Search
Risk Management - Information Technology Resume Search
My Spider Scam Awareness Contacting Us F. A. Q.
 
Job Seekers
Search Jobs
Browse Jobs
Post a Resume
Job Alerts
 
Employers
Search Resumes
Browse Resumes
Post a Job

Risk Management Resume


Desired Industry: Information Technology SpiderID: 77543
Desired Job Location: Centerton, Arkansas Date Posted: 6/26/2016
Type of Position: Full-Time Permanent Availability Date: Immediately
Desired Wage: 65000
U.S. Work Authorization: Yes
Job Level: Management (Manager, Director) Willing to Travel:
Highest Degree Attained: Other Willing to Relocate: Yes


Objective:

Highly analytical and results-oriented professional, offering broad-based experience in cyber security; encompassing identification of

cyber threats through vulnerability and compliance assessments on systems and databases.

Equipped with in-depth knowledge of databases, domains, networks, firewalls, and hardware to evaluate and mitigate risks while

enhancing system security; as well as classifying and patching security weaknesses and providing recommendations to security hardware

and software upgrades. Effective at working with professionals of diverse backgrounds within fast-paced, technically sound, and

operationally complex environments.


Experience:

Professional Experience

Walmart Inc., Information Systems, Bentonville, AR
Risk Specialist Cyber Security–Information Systems Division 2012–Present
Play a key role as team lead for the Security Risk Management Team, in charge of managing workflow and priorities of two other workers.
Demonstrate expertise in security policies, standards, procedures, and best practices to effectively provide support with the

implementation of security governance administration and maintenance.
Thoroughly evaluate and determine risks by examining new and existing business processes, understanding factors of influence,

determining the relationship between risk and governance, and monitoring the remediation of known vulnerabilities.
Assist business customers throughout the delivery process, while preparing budgets, staffing and change management plans,

documentations, and scope statements with business units.
Apply analytical skills in reviewing metrics, inefficiencies, and non-standard actions to determine outliers and resolve IT security

risks and vulnerabilities.
Interface with the senior management to provide feedback on identified improvement opportunities.
Lead and coordinate compliance efforts through close monitoring of specific information security controls concerning the International

Organization for Standardization (ISO), Sarbanes-Oxley Act (SOX), Payment Card Industry (PCI), and Health Insurance Portability and

Accountability Act (HIPAA).
Provide expert oversight to the implementation of security initiatives including:
Resolution of critical issues;
Monitoring of project progress against plan;
Escalation of complex or difficult issues;
Utilization of scope change orders to track project changes;
Facilitation of informational presentation;
Management of the Delivery Team;
Development of performance reports.

Notable Accomplishments:
Brought significant reduction to security posture risks, as well as critical and high finding backlogs to zero.
Created and executed data dashboard for the upper management to present weekly and monthly progress of risk remediation effort,

enabling trend and projection analysis to identify problems and issues and prevent them from being critical.

Systems Engineer 2006–2012
Displayed proficiency in administrator access on Archer, TCRACF, host, Remedy, Retail Link, service catalog, Customer Information

Control System (CICS®), email, wire access, and PeopleSoft.
Conducted audits and evaluated access as required for specialized elevated access on the following systems:
Resource Access Control Facility (RACF) (Mainframe);
Active Directory (AD)
UNIX
Microsoft Outlook
IBM System AS400
BMC Remedy Action Request System (ARS)
Retail Link
PeopleSoft
Teradata
Microsoft SharePoint
Presided over the training of three facilitators and the staff on various topics including:
Compliance and elevated security administration including SOX, PCI, PII, and HIPAA;
Creation of logon accounts and user IDs;
Transfer of associates access from one job area to another;
Termination of accounts and associates;
Vendor and third party access setup;
Vendor life cycle management;
UNIX access; and
Domain moves and Teradata access.
Organized and managed onsite town hall and globally web-based meetings to obtain customer feedback for process improvements.
Supported the setup and testing of role-based access for high-profile areas including point-of-sale (POS) and tax.
Generated reporting metrics for the management to view training effectiveness, along with trend and projection analysis, comprised of

instructor and manager level, as well as executive reporting and customer survey feedback.

Notable Accomplishments:
Drove key business efficiency initiatives, which resulted to the achievement of more than $1M annual savings.
Facilitated the training of more than 3,000 global security administrators who achieved an average of 92% on their final exam.
Rendered direct supervision to the development and implementation of a training and development program, which increased the number of

trained security administrators by 700% annually, while reducing customer support issues by 27%.
Created and executed live webinar training for the United States and other international markets, including Africa, Canada, Central

America, China, Germany, Great Britain, Mexico, and Puerto Rico.
Planned and coordinated a training schedule of 34 classes comprised of 1,500 security administrators to support the rollout of the

company’s new provisioning tool in TCRACF within two months.
Initiated an automated testing, grading, and reporting system, Metrics that Matter, which enabled the team to review class test results

from multiple levels as well as to adjust classroom training as necessary.
Made major contribution to the company in saving more than $85K in training expenses through on-demand video training to globally cover

compliance and administrator training, thus eliminating classroom instruction.

Systems Administrator–Implementation Team 2000–2006
Offered hands-on support to the Realty Division, Store Planning, and Accounting, as well as construction managers in researching and

developing tools to streamline market penetration including:
Evaluation of new software;
Setup of onsite proof of concepts; and
Review of software used in various production sites.
Took charge of administering AS400 global accounts including access control, auditing access, accounts modification and removal, and

data entry for the Executive Real Estate Committee.
Leveraged technical skills in troubleshooting hardware and software, PCs, scanners, plotters, and printers issues.

Notable Accomplishments:
Provided assistance with the implementation of the JD Edwards OneWorld Enterprise Solution setup role-based management.
Pioneered a training program for the Realty Division to provide security administration training to more than 40 administrators.



Earlier Career

CompUSA, San Diego, CA
Computer Repair Technician–Home Installation 1999–2000

US Navy, Various Locations
Aviation Administration | Data Analyst 1980–2000


Education:

Recent Professional Development

Certification: Certified Information Privacy Professional/Information Technology (CIPP/IT)

Training:
2015
Certified Information Systems Security Professional Certification Class | Walmart, Bentonville, AR
2014
SEC301: Introduction to Information Security | SAN’s Institute, Bentonville, AR
2012
CIPP Certification Class | Walmart, Bentonville, AR
2009
Birkman Method | Advanced Birkman | Leadership Foundations
Project Management 101 | Franklin Day Planner System | RACF Administration | Walmart, Bentonville, AR


Affiliations:
=====


Skills:

Areas of expertise include:

Aviation Administration | Troubleshooting and Repair | Cyber Incident Response | Training and Development | Access Control
Database Administration and Security | Automated Data Management System | Compliance Risk Evaluation


Additional Information:


Awards and Honors

Navy Achievement Medal | Letter of Commendation | Navy Commendation (4)
Good Conduct (5) | Battle E | Kuwait Liberation Medal | Southwest Asia Service Medal | National Defense Medal
Customer Service Awards | Associate of the Month | Team Player of the Month | Service Award



Activities

American Legion | Disabled American Veterans (DAV) | Steven Minister



Technical Acumen

AS400 | UNIX | Resource Access Control Facility (RACF) (Mainframe) | Remedy | Retail Link
Customer Information Control System (CICS®) | Microsoft Exchange | PeopleSoft | JD Edwards EnterpriseOne | Windows Environments


Reference:
Available upon request.


Candidate Contact Information:
JobSpider.com has chosen not to make contact information available on this page.
Click "Contact Candidate" to send this candidate a response.


    





© 2019 Job Spider
Privacy Policy | CC Marketing Sites | Site Map | Links