Profiles search

Shon Paris

Cyber Analyst, Security Risk & Remediation Analyst, Governance/Compliance Manager GRC, Security Controls alignment, Data Infrastructure, Product Manager, IAM Support, Digital Evolution, IT Audit, Documentation

Short Hills, NJ, United States

Details

Experience: The Global Security Office executes framework that protects technology, assets, integrity, privacy and processes. GSO provides security against threats, governance oversight, mitigates security risks, reinforces regulatory requirements and industry standards. Function within the Cyber Control Operating Environment, responsibilities include :

** Develop and tested Cyber Security Controls identified through gap analysis – ensure control(s) are mapped to policy. Validate efficiency and control evidence in preparation for audit.

** Complete GRC gap analysis and alignment, ensure policies support security controls and are mapped to policy requirements. Work with business units to confirm their Risks and Issues are progressing.

** Complete Risk Assessments to identity potential Issues. Monitor Risk Governance activities, plan risk remediation/mitigation approach, preventing extended risk.

** Lead a concentrated focus on Risks that become Issues, identify key requirements and resources to begin remediation process and resolve risk. Confirm remediation evidence.

** Govern the Cyber and GRC Document Management process end-to-end. Develop / produce Cyber Control Operation Policy Documentation.

** Execute Issues/ Incident Management resolutions, implement practices that comply with Audit Teams, Vulnerability Management, and confirm progression of Issue resolutions.

** Address high-risk issues provided by CISO bi-weekly, prioritized severity and began response plans. Minimize the impact, prevented disruptions, avoid escalations to executive leadership. Resolutions are tailored according the Issue.

2022 : Present

Co Name is stated on Resume - - IT, Cyber Sec, Risk, Remediation, Data Infrastructure

Cyber Security Risk Analyst

The Artificial Intelligence and Data Team (AI&D) aligns AI/ML development with new products, applications, and operational goals with internal data across governing rules and principles that support legal requirements.

** Applied Machine Learning techniques to new Artificial Intelligence developments, prototype models, and intelligent machines. Incorporated specific Regulatory Compliance laws and Governance policies into Cyber Security IT product development.

** Managed AI&D Governance & Regulatory Compliance Policies Enablement Program. Determined GRC policies required to protect Data Infrastructure (and AI&D); documented all policies related to AI/ML.

** Built Security Controls integrated with tactical plans that impact systems/database, application development and maintenance. Established controls that serve as parameters to safeguard technology and data privacy, and protect consumer data. Day-to-day development of security controls that supported Artificial Intelligence & Data and Model Management initiatives.

2021 :

Co Name is stated on Resume - - IT, Cyber Sec, Risk, Remediation, Data Infrastructure

Artificial Intelligence & Data Analyst

** Delivered complex analysis in a Governance Risk Compliance / Regulatory and Security Risk Analyst, ensure the development of cyber systems/applications are compliant with federal and international regulatory requirements. Developed IT products / projects (new and existing), and a security control environment. Mitigated potential security incidents, industry methodologies and risk modeling principles across enterprise cyber, systems, applications, products, and process (via Risk Analyst component - RSA Archer GRC Platform, and QUALYS).

** Complete Risk Analysis and Assessments, aligned Regulatory requirements and Policy Compliance against 120 security controls, and confirmed security control evidence was compliant.

** Executed projects involving systems, applications, products, and associated activities. Confirm specific requirements and deliverable agreements with technology and business groups. Ensured project performance on every level. Leveraged Archer GRC Platform to manage products / projects activities, security controls, risks remediation/mitigation, Infrastructure environments, and a broad range of solutions.

* Implemented Risk Analysis via methodologies and framework, IT/IS Cyber Security Risks and Controls, managed Vulnerabilities, supported system / application development, Digital Development, Cloud, Data Management, Process Management.

* Experience with - RSA ARCHER GRC Platform, NIST, FFIEC, SOX 404, SAS 70, COBIT

* IT Analyst, Security Analyst, Risk Analyst, Project Manager, Product Management, IT Audit, IAM, Documentation, Client Management.

2018 :

Co Name is stated on Resume - - IT, Cyber Sec, Risk, Remediation, Vulnerability Management

Cyber Security Risk Analyst

* Implementation of Cloud Services Platform project (AWS.

* Provide Cyber Security Analysis, Governance for global risk framework and controls.

* Complete Enterprise Risk Management analysis and forecasting for each phase of every process and component.

* Ensure new development strategies and solutions align with existing requirements and designs.

* Evaluate three modules of Cloud architecture – Infrastructure as a Service (IaaS) - Platform (PaaS) - Software (SaaS) – to govern and control security management.

* Capture multi-relational metadata to produce diagram models.

* Collaborate Cloud architecture strategies that support Enterprise, Business, Technology, Information, Application, Data Management.

* Lead Agile activity; Lead Liaison between business units, technology teams.

* Produce and define a broad range of system(s) infrastructure architecture and policies.

2017 :

Digital Analysis

Risk Analyst - Information Security / Cyber

* Enterprise Architecture Strategy and Development,

* Cyber Security,

* Cloud Infrastructure and Migration,

* Information Security CISSP,

* Data Encryption and Protection,

* System Infrastructure & Development,

* Technology Evolution,

* Digital Transformation,

* System / Application Development & Implementation,

* Business Intelligence and Big Data,

* Identity and Access Management,

* Governance and Policy Compliance

2016 :

Deutsche Bank - Information Security - Financial Services

Business Analyst

Company: Co Name is stated on Resume - - IT, Cyber Sec, Risk, Remediation, Data Infrastructure

Years of Experience: 12

Skills

Analysis, Brand Development, Business Analysis, Data Analysis, Enterprise Development, Functional Specifications, Information Architecture, IT Strategy, Leader - Communications Liaison, Operational Specifications, Product Development, Proj. Mangmt., Social Media Marketing, System Design, System Development and Implementation, System Integration / Migration, System Testing & UAT, Technical Analyst, Technical Writing, User Experience, Web Applications, Website Development

About

Cyber Security Risk Analyst (Hybrid role), Enterprise Information Security Architecture (EISA), System Infrastructure, Information Security - Cyber Security Controls environment, Risk Assessment and Management, AWS Cloud Infrastructure and migration, product and application development of System/ Server/ Application, IS Regulatory & Audit, Governance and Policy Compliance, Process Management, Appl / System component testing.

___________________________________________________________________________________________

___________________________________________________________________________________________