Jessica Hoffman, CISSP
Details
Instructional Technology
Bloomsburg University of Pennsylvania
2005 : 2007
Bachelor's degree
Computer and Information Systems
Bloomsburg University of Pennsylvania
2003 : 2004
City of Philadelphia
Deputy Chief Information Security Officer & HIPAA Security Officer
While working at Provincia Government Solutions (PGS) as the Vice President and IT Audit Manager, became the Security Controls Assessment (SCA) program owner. In this role, continued to improve the SCA process through risk based and layered security specific recommendations, the test once, reuse many concept, and by implementing and understanding real world security and privacy concerns.
Provided an array of IT audit, compliance, and consulting services to the public and private sectors leveraging the following baselines :
NIST 800-53,
NIST 800-171,
NIST 800-37 (Risk Management Framework),
NIST 800-137,
Cybersecurity Framework,
Cybersecurity Maturity Model Certification (CMMC),
HITRUST, and;
Service Organization Controls (SOC) Type I, II, and III.
The goal is to find potential vulnerabilities that could be exploited and impact the Confidentiality, Integrity and Availability (CIA) of client systems, network, and/or data. As a trusted advisor, assisted clients with the development of mature security programs. Business and technical risks identified are rated and conveyed clearly to clients’ executive leadership and business partners; including suggested Corrective Action Plans (CAP).
As an IT Audit Manager oversaw and managed several teams concurrently. Responsibilities included but not limited to :
1. Audit Planning
2. Risk Assessment
3. Audit Execution
4. Control Evaluation
5. Report Preparation
6. Stakeholder Communication
7. Compliance and Governance
8. Team Management
9. Continuous Improvement
10. Collaboration
2018 : 2023
Provincia Government Solutions
Vice President | IT Audit Manager | Independent Consultant
Taught CISSP bootcamp and Information Security Officer cohort within the Professional Development department at HU. Taught Cyber Warfare graduate class Winter 2023. Teach on an as needed basis and as time permits.
2022 : 2023
Harrisburg University Professional Development
Instructor
School of Business. Taught Cybersecurity undergrad classes. Teach on an as needed basis and as schedule permits.
2022 : 2022
Penn State Harrisburg
Adjunct Instructor
Taught CompTIA ITF+, Security+, and cybersecurity research classes. NuPaths organization, co-founded by Harrisburg University, offers short-term educational pathways geared towards the preparation of students to take CompTIA certification for various IT roles. Teach on as needed basis and as time permits.
2019 : 2022
NuPaths
Adjunct Instructor | CompTIA courses
Skills
Application Security, Auditing, Business Development, Certification & Accreditation, Cloud Computing, Communication, Cybersecurity, Disaster Recovery, FISMA, Healthcare Information Technology, Healthcare Information Technology (HIT), HIPAA, Information Security, Information Security Consulting, Information Security Management, Information Technology, Internal Audits, ISO 27001, IT Audit, IT Risk Management, IT Security Audit, Leadership, Leadership Development, Management, Network Security, NIST, NIST 800-53, NIST 800-171, NIST CSF, NISTIR 8001, Physical Security, Process Improvement, Professional Services, Program Management, Project Management, Quality Assurance, Risk Management, RMF, SDLC, Section 508, Security, Security Audits, Security Controls Assessments (SCA), Security Management, Security Training, Software Development, Software Development Life Cycle (SDLC), Vendor Management
Profile Photo
