Profiles search
Richard Nana
Professional IT Auditor with 6+ years of working experience in IT Security audit
Woodbridge, VA, United States
Details
Experience:
• Recommended and developed security measures to protect information against unauthorized modification or loss.
•Performed Information Security Risk assessments and vulnerability testing of applications and deployments and tracked the remediation of findings to reduce risks.
•Identified areas that required increased security controls to protect the organization and its end users from future fraud.
•Assisted with the management and updating of physical security, business continuity, and disaster recovery plans/efforts, including annual testing.
2020 : Present
Best Buy
Information Security Analyst
•Performed Information Security Risk assessments and vulnerability testing of applications and deployments and track the remediation of findings to reduce risks.
•Researched, scoped out and guided the implementation of new controls to enhance the organization's security posture.
•Maintained existing security controls and ensured compliance with targeted security and privacy frameworks
•Data management, helped in providing recommendations based on findings and helped in the mitigation process.
•Recorded, monitored, reported, and organized the remediation of any security incidents.
2018 :
Comcast
Information Security Analyst
•Performed third party risk assessments and Vendor due diligence of Cleveland Clinic's vendors.
•Monitored 3rd party operational risk trends and provided analysis of data and other operational risk metrics using Security Scorecard.
•Performed IT & Risk Security Risk & Control Assessments for new products/initiatives.
•Reviewed services provided by vendor and defined scope of assessment.
•Reviewed assessments performed by 3rd party and provided feedback. Defined appropriate risk levels and corrective actions for issues identified
2016 : 2018
Cleveland Clinic
Compliance Analyst
•Performed Information Security Risk assessments and vulnerability testing of applications and deployments and tracked the remediation of findings to reduce risks.
•Identified areas that required increased security controls to protect the organization and its end users from future fraud.
•Assisted with the management and updating of physical security, business continuity, and disaster recovery plans/efforts, including annual testing.
2020 : Present
Best Buy
Information Security Analyst
•Performed Information Security Risk assessments and vulnerability testing of applications and deployments and track the remediation of findings to reduce risks.
•Researched, scoped out and guided the implementation of new controls to enhance the organization's security posture.
•Maintained existing security controls and ensured compliance with targeted security and privacy frameworks
•Data management, helped in providing recommendations based on findings and helped in the mitigation process.
•Recorded, monitored, reported, and organized the remediation of any security incidents.
2018 :
Comcast
Information Security Analyst
•Performed third party risk assessments and Vendor due diligence of Cleveland Clinic's vendors.
•Monitored 3rd party operational risk trends and provided analysis of data and other operational risk metrics using Security Scorecard.
•Performed IT & Risk Security Risk & Control Assessments for new products/initiatives.
•Reviewed services provided by vendor and defined scope of assessment.
•Reviewed assessments performed by 3rd party and provided feedback. Defined appropriate risk levels and corrective actions for issues identified
2016 : 2018
Cleveland Clinic
Compliance Analyst
Company:
Best Buy
Years of Experience:
8
Profile Photo
