Profiles search
Kwame Boateng
Information Security Analyst | Safeguarding Digital Assets and Ensuring Cyber Resilience
Loganville, GA, United States
Details
Education:
Bachelor's degree
Information Technology
Kumasi Technical University
2014
Information Technology
Kumasi Technical University
2014
Experience:
Manage third-party audits and security risk assessments with external partners and vendors.
Build key partnerships with senior stakeholders to develop and evangelize enterprise-wide IT security policies, standards, and procedures resulting in a 70% reduction of audit findings.
Act as key participant in monitoring, evaluating, and measuring the impact of decisions practiced in Risk Management functional area.
Work closely with management to determine acceptable levels of risk to the organization.
Monitor moderately complex business-specific programs and provide risk management consulting to support the business in designing and implementing risk-mitigation strategies.
Monitor, measure, evaluate, and report on the impact of decisions and controls to the relevant business group or functional area.
Develop and implement risk monitoring and risk reporting processes and controls.
Collaborate and partner with relevant business groups to identify current and emerging risks associated with business activities and operations and provide guidance in developing and implementing risk-mitigating strategies.
Use automated tools to perform ongoing monitoring of business controls, control testing, root cause analysis, and examination of the effectiveness of established business controls.
Review and approve security policies, controls, and cyber incident response planning.
Brief executive team on the status and risks facing the organization and serve as a catalyst for security.
Effectively lead development of Enterprise capabilities such as Vulnerability Assessments, Security Awareness, Threat/Risk Assessments, and Security Incident Response.
Oversee internal and external security audits and penetration testing.
2021 : Present
DEXIS
Information Security Analyst
2018 :
DEXIS
Cyber Security Analyst
2018 :
Self
Manager
Managed cloud and non-cloud vendor due diligence program which ensured all clients (PI) personal
information stored by vendors complied with FERPA/ PCI-DSS, HIPAA/HITECH.
Monitored user compliance with networking and internet security policies.
Conducted risk assessments, including reviewing organizational policies, standards, and procedures and
providing advice on their adequacy, accuracy, and compliance with industry standards.
Assessed the level of risk and develops and/or recommends and operationalize appropriate mitigation
countermeasures.
Communicated results of vulnerability and risk assessments to system and data owners.
Provided timely updates to team members and audit management on engagement progress and audit issues,
ensuring all deadlines are consistently achieved.
2017 : 2019
Computer Generated Solutions India Private Limited
Security Analyst
Utilized technology and systems to track the movement and quantity of goods in the warehouse.
Predicted future demand to optimize inventory levels and prevent overstocking or stock-outs.
Managed orders from receipt to shipment, ensuring accuracy and timeliness.
2015 : 2016
Plastic Omnium
Logistics Associate
Build key partnerships with senior stakeholders to develop and evangelize enterprise-wide IT security policies, standards, and procedures resulting in a 70% reduction of audit findings.
Act as key participant in monitoring, evaluating, and measuring the impact of decisions practiced in Risk Management functional area.
Work closely with management to determine acceptable levels of risk to the organization.
Monitor moderately complex business-specific programs and provide risk management consulting to support the business in designing and implementing risk-mitigation strategies.
Monitor, measure, evaluate, and report on the impact of decisions and controls to the relevant business group or functional area.
Develop and implement risk monitoring and risk reporting processes and controls.
Collaborate and partner with relevant business groups to identify current and emerging risks associated with business activities and operations and provide guidance in developing and implementing risk-mitigating strategies.
Use automated tools to perform ongoing monitoring of business controls, control testing, root cause analysis, and examination of the effectiveness of established business controls.
Review and approve security policies, controls, and cyber incident response planning.
Brief executive team on the status and risks facing the organization and serve as a catalyst for security.
Effectively lead development of Enterprise capabilities such as Vulnerability Assessments, Security Awareness, Threat/Risk Assessments, and Security Incident Response.
Oversee internal and external security audits and penetration testing.
2021 : Present
DEXIS
Information Security Analyst
2018 :
DEXIS
Cyber Security Analyst
2018 :
Self
Manager
Managed cloud and non-cloud vendor due diligence program which ensured all clients (PI) personal
information stored by vendors complied with FERPA/ PCI-DSS, HIPAA/HITECH.
Monitored user compliance with networking and internet security policies.
Conducted risk assessments, including reviewing organizational policies, standards, and procedures and
providing advice on their adequacy, accuracy, and compliance with industry standards.
Assessed the level of risk and develops and/or recommends and operationalize appropriate mitigation
countermeasures.
Communicated results of vulnerability and risk assessments to system and data owners.
Provided timely updates to team members and audit management on engagement progress and audit issues,
ensuring all deadlines are consistently achieved.
2017 : 2019
Computer Generated Solutions India Private Limited
Security Analyst
Utilized technology and systems to track the movement and quantity of goods in the warehouse.
Predicted future demand to optimize inventory levels and prevent overstocking or stock-outs.
Managed orders from receipt to shipment, ensuring accuracy and timeliness.
2015 : 2016
Plastic Omnium
Logistics Associate
Company:
DEXIS
Years of Experience:
7
Skills
Analytical Skills, Cybersecurity, Databases, Incident Response, Information Security, Internal Audits, Internet Security, Penetration Testing, Project Management, Risk Assessment, Risk Management, Team Building, Third-Party Vendor Management, Vulnerability Management
About
Extensive experience implementing viable, forward-thinking measures to drive compliance and commercial requirements. Proven ability to form strategic alliances with cross-functional teams in order to provide customer-focused security assurance services. Risk assessment, incident response, security awareness, vulnerability testing, and threat management are all aspects of risk management.
Profile Photo
