EVANS YEBOAH, Comptia Security plus, Qualys Specialist.

Information Technology Security Analyst at Cyberplex
  • Claim this Profile
Contact Information
us****@****om
(386) 825-5501
Location
Missouri City, Texas, United States, US

Topline Score

Topline score feature will be out soon.

Bio

Generated by
Topline AI

You need to have a working account to view this content.
Join now
You need to have a working account to view this content.
Join now

Credentials

  • Qualys PCI DSS
    Qualys
    Jun, 2022
    - Nov, 2024
  • Certified ScrumMaster (CSM)
    International Scrum Institute™ (Scrum Institute)
  • CompTIA Security+
    CompTIA
  • Cybersecurity Foundations for Risk Management
    Kennesaw State University
  • Qualys Certified Specialist CyberSecurity Asset Management
    Qualys
  • Qualys Certified Specialist Policy Compliance.
    Qualys
  • Qualys Certified Specialist | Vulnerability Management Detection & Response
    Qualys

Experience

  • Cyberplex
    • Canada
    • Technology, Information and Internet
    • 1 - 100 Employee
    • Information Technology Security Analyst
      • Jan 2021 - Present

       Performs Vendor/3rd Party Security Risk Assessment to assess the effectiveness of cloud vendor’s controls against ISO 27001, HIPAA, and NIST 800-53rev4.  Reviewed violations of computer security procedures and developed mitigation plans.  Monitored use of data files and regulated access to protect secure information.  Communicated issues to business partners, ensuring their understanding of associated risks and actions needed to remediate those risks  Participates in annual review of all information security policies, standards, procedures and guidelines; recommends new policies and amendments; assures alignment with current regulatory requirements.  Collecting/reviewing data from multiple sources to assess a third party's security  Create Security Assessment reports, identify gaps and track remediation activities  Participated in business continuity and disaster recovery preparedness activities.  Led third-party risk-assessment program, assessing compliance and vulnerabilities.  Oversaw company governance, regulations, and compliance efforts.  Reviewed and recommended updates to information security policies, standards, and guidelines.  Identified cyber and information security risks through consistent review of business applications and infrastructure systems.

  • Cyber Solutions
    • United States
    • Computer and Network Security
    • 1 - 100 Employee
    • Information Technology Security Analyst
      • Aug 2016 - Jan 2021

       Help remediate Internal Control Deficiencies and engage in review activities.  Provide controls and testing guidance to domain owners and testers.  Assess vendor(s) existing controls to determine the level of compliance to the applicable regulations or framework.  Perform user and vendor access reviews.  Validate information security key controls to identify control risks, analyze root causes and trends in potential control weaknesses, suggest new controls to meet compliance standards where applicable  Maintain awareness of external regulations for new or changed IT requirements and identify industry standards for core IT processes  Partner and facilitate internal and external audits within IT and conduct periodic assessments to address specific risk  Document and report on compliance training program materials, including training of compliance personnel cybersecurity awareness within the organization.  Develops, distributes, and monitors periodic anti-phishing campaigns Monitor adherence to Cybersecurity policies,  Lead day-to-day testing and reporting of IT compliance; monitor internal compliance standards against information security policies and processes

  • DeeRich Consulting Jan 2015 – July 2016
    • IT security Assessor
      • Jan 2015 - Jul 2016

       Execute IT compliance testing, controls assessment, and documentation across all domains for IT General Controls, (PCI DSS) Payment Card Industry, Data Privacy, and other compliance requirements, as appropriate.  Test IT controls in compliance with the Payment Card Industry Data Standard Security PCI DSS and work with external auditors and QSAs to reconcile discrepancies  Prepare reporting for various aspects of the Cybersecurity program Track, monitor, and report on key cybersecurity. •Escalated issues associated with vendors as needed to management decision  Participate in all Audit activities to include Risk Assessment, Planning, Control Testing and Evaluation, Documentation, Assessment Schedule.  Managing expectations of system owners. Evaluate/interpret IT Audit, PCI DSS and P

Education

  • Delgado Community College
    Cybersecurity Analyst ( CYSA+), Cybersecurity Analyst
    2022 - 2022
  • Kennesaw State University
    Risk Management
    -
  • Texas Premier Technology Institute
    Associate's degree, Network and System Administration/Administrator
    2021 - 2021
  • University of Education Ghana
    Bachelor's degree, Education
    2009 - 2012

Community

You need to have a working account to view this content. Click here to join now