Profiles search
Roseline Dunamis
Information Security Third Party Risk & Compliance
United States
Details
Education:
Bachelor's degree
Social Work
The University of Texas at Arlington
2017 : 2021
Social Work
The University of Texas at Arlington
2017 : 2021
Experience:
2022 : Present
Costco Wholesale
Information Security Risk Analyst
•Implement a review/assessed cloud control process for third party vendors
•Establish assessment criteria for cloud vendor onboarding according to NIST CSF
•Manage Information security risk register/tracker
•Triage Risk according to urgency and ratings for remediation
•Conduct business application and technology risk and compliance assessments.
•Perform SOX controls maintenance and testing
•Coordinate efforts to develop information security policies processes.
•Conduct security and compliance reviews for targeted areas.
•Manage security and compliance risk during the implementation of security, business, and technology solutions.
•Document risk management procedures.
•Served as the point of contact to project teams and business partners for security risk and compliance questions
•Build strong partnerships with IT and Business partners
•Provide recommendations for gaps identified
•Provide data protection and data privacy governance oversight, ensuring compliance with GDPR and CCPA.
•Worked closely with legal to ensure proper security clauses are covered during contract development and negotiation
•provide IS/IT compliance support and consulting to multiple interdepartmental stakeholders as well as external stakeholders to ensure compliance aligns to NSH’s Vendor Risk Management framework along with information security policies, governmental and industry regulations.
•Participated in the Vendor governance Process in Discovery, Assessing, and ensuring compliance for all NSH third-party/vendors
•Perform data risk analysis as needed in collaboration with Nestle’s Legal team both local and international
•Managed complex compliance programs as a key member of the Nestlé Cloud Compliance team, working directly with technical and business leadership teams across the organization to select, deploy, and validate security controls to ensure security and compliance requirements are maintained
•Conducted risk assessment walkthroughs (Internal and vendor management walkthrough)
2019 : 2022
Nestlé Skin Health
Information Security Risk Analyst
2017 : 2021
The University of Texas at Arlington
Social Work Major
Costco Wholesale
Information Security Risk Analyst
•Implement a review/assessed cloud control process for third party vendors
•Establish assessment criteria for cloud vendor onboarding according to NIST CSF
•Manage Information security risk register/tracker
•Triage Risk according to urgency and ratings for remediation
•Conduct business application and technology risk and compliance assessments.
•Perform SOX controls maintenance and testing
•Coordinate efforts to develop information security policies processes.
•Conduct security and compliance reviews for targeted areas.
•Manage security and compliance risk during the implementation of security, business, and technology solutions.
•Document risk management procedures.
•Served as the point of contact to project teams and business partners for security risk and compliance questions
•Build strong partnerships with IT and Business partners
•Provide recommendations for gaps identified
•Provide data protection and data privacy governance oversight, ensuring compliance with GDPR and CCPA.
•Worked closely with legal to ensure proper security clauses are covered during contract development and negotiation
•provide IS/IT compliance support and consulting to multiple interdepartmental stakeholders as well as external stakeholders to ensure compliance aligns to NSH’s Vendor Risk Management framework along with information security policies, governmental and industry regulations.
•Participated in the Vendor governance Process in Discovery, Assessing, and ensuring compliance for all NSH third-party/vendors
•Perform data risk analysis as needed in collaboration with Nestle’s Legal team both local and international
•Managed complex compliance programs as a key member of the Nestlé Cloud Compliance team, working directly with technical and business leadership teams across the organization to select, deploy, and validate security controls to ensure security and compliance requirements are maintained
•Conducted risk assessment walkthroughs (Internal and vendor management walkthrough)
2019 : 2022
Nestlé Skin Health
Information Security Risk Analyst
2017 : 2021
The University of Texas at Arlington
Social Work Major
Company:
Costco Wholesale
Years of Experience:
6
About
I have about 3 years of professional experience in the information technology risk space, working on third-party Vendor/Cloud Risk management, Cybersecurity risk analysis, IT Security Risk Management and Analysis, IT Governance and Compliance, Data security, and privacy.
I am also experienced with regulations such as CCPA, GDPR, and HIPAA. My work ethic, attention to detail, collaboration, and team spirit make me a valuable addition to my team.
My engagement experiences include application control testing and SOX controls compliance audits. I have relevant experience in using relevant IT controls objective (COBIT) guidelines, NIST Cyber Security framework, ISO 27001, PCI-DSS, GDPR, GLBA.
Profile Photo
