David Rodriguez - VIVA USA Inc

Funso Richard Summary: . Results-driven IT professional with notable success directing a broad
range of IT security initiatives while participating in planning,
analyzing, and implementing solutions in support of critical business
assets.
. Excel at designing and implementing policies, protocols and processes
to ensure business resilience and regulatory compliance. Strong
leadership, team building, communications, client-facing and
presentation skills.
Areas of expertise:
. Systems and Assets Security
. Research and Development
. Policy Planning and Implementation
. Business Impact Analysis and Continuity
. Data Driven Decision Making
. Knowledge of IT Security Best Practice
. Change Management
. Security Controls
. Risk Management
. Incidence Response Management
. Enterprise IT Governance, Risk and Compliance
. Cloud Security
. Social Engineering
. Vendor Management Technical Proficiencies: Platforms: Windows 7/ 8/10, Windows Server 2012 R2, Windows Server
2016, VM, Cloud
Framework: COBIT 5, ITIL, ITAF, HIPAA, NIST 800, ISO 27001/27002, PCI DSS,
HITRUST CSF
Tools: AlertLogic, Solarwinds Server and Application Monitor, Database
Protocol Analyzer, Nessus, Proofpoint, ADAudit Plus,
ADManager Plus, Microsoft Office Suite,
McAfee/Symantec/TrendMicro Virus Protection Utilities,
Microsoft Security Compliance Manager, MBSA, SIEM, IDS/IPS,
BMC FootPrints, SharePoint, PolicyTech Certification: . Certificate of Cloud Security Knowledge (CCSK)
. Certified Information System Auditor (CISA -passed)
. CompTIA Security+ Certified Education / Qualifications: . Certificate of Completion -Certified Information Systems Auditor
(CISA), IT University Online - Miami, FL, 2016
. Certificate of Completion - CompTIA Security+, Career Academy -
Needham, MA, 2016
. Certificate of Completion - CompTIA Network+, IT University Online -
Miami, FL, 2015
. Master Online Teacher Certification, University of Illinois - Chicago,
IL, 2014
. Master of Science: Psychology, Kaplan University - Chicago, IL, 2011
. Masters of Arts: Literature, University of Ibadan - Ibadan, Oyo,
Nigeria, 2006
. Masters of Arts: Communication and Language Arts, University of Ibadan
- Ibadan, Oyo, Nigeria, 2005
. Certificate in Computer Operations, Maxtech Business Systems - Lagos,
Nigeria, 2000
Professional Experience: HIMSS | Chicago, IL July
2016 to December 2016
IT Security Analyst (Consultant)
. Designed policies and protocols in compliance with regulations and
best practice using NIST 800-100 & 137
. Utilized COBIT and FFIEC to design Information Security policy
. Effectively monitored global assets for security incidences using
Alertlogic and AD Audit
. Monitored daily anti-virus systems such Symantec EP and TrendMicro
. Ensured that systems had updated anti-virus versions enterprise-wide
. Ensured that BYOD conform to data access requirement.
. Ensured effective data classification and access to classified data
was controlled.
. Detected and resolved security incidents and events within 48 hours
. Participated in change and architecture management
. Audited vendors to ensure compliance with corporate policies
. Ensured governance and compliance using Alertlogic, SolarWinds and AD
Audit.
. Effectively monitored and managed email system using Proofpoint TAP
. Ensured software development life cycle incorporated appropriate
security controls during the life cycle
. Monitored enterprise-wide system for access control and permission
using Manage Audit Plus
. Reviewed alerts real time to determine data access using AD Manager
. Managed IT Assurance site to facilitate end user experience using
SharePoint
. Effectively carried out phishing campaigns to increase security and
reduce social engineering incidences
. Effectively monitored capacity utilization and ensured timely
resolution of risks using SolarWinds
. Ensured effective user access control management especially during off
boarding.
. Developed security awareness training and materials
. Designed the Incidence Response procedure, policy and guidelines
. Established metrics to measure security awareness impact
. Acted as an SME on security issues to strategic business units
. Initiated a business-oriented approach to security
. Supported Help Desk in resolving security-associated tickets Dunamis Healthcare, Inc | Chicago, IL February 2011
to June 2016
IT Security Specialist
. Designed and implemented Security Controls using NIST 800-53
. Facilitated training of clients in security protocol and HIPAA
regulations
. Audited systems to ensure compliance with established policies
. Ensured compliance with HITRUST CSF
. Provided effective monitoring of logs and security events using Splunk
. Monitored data integrity and availability using Symantec DLP
. Monitored alerts for intrusions using Symantec Endpoint Protection
. Collaborated with upper management to create policies and processes
. Performed business impact analysis and risk assessment
. Implemented multi-layered security of critical business systems
. Collaborated with stakeholders on governance, risk management &
compliance
. Effectively ensured that applications followed data policies
. Monitored access to data by end users and systems.
. Tested and monitored incidence response and recovery readiness
. Effectively managed risks and remediation using NIST 800-30 and 800-37
. Established metrics to monitor key performance indicators.
. Assessed compatibility of integrated systems
. Effectively monitored failed logins to determine potential breach and
unauthorized access
. Investigated security breaches and provided resolutions
. Monitored systems for vulnerabilities using Nessus Shalom Services | Whistable, England
May 2015 to July 2016
IT Security Consultant (Part-time / Remote)
. Implemented security program to ensure secure transaction
. Provided remote and on-site support for asset management
. Provided training in risk mitigation
. Configured business systems to ensure effective security controls.
. Designed and implemented security policies
. Ensured business continuity and scheduled data backup 3V Limited | Lagos, Nigeria January
2006 to January 2011
IT Operations Specialist
. Installed and configured proprietary software for the accounting
department of the Nigerian Customs Authority nationwide
. Ensured system security compliance
. Purchased and installed third party software on clients' systems
. Implemented multi-layered security network systems.
. Effectively managed public facing network platform for one hundred
users
. Designed and implemented security policies Professional Affiliations: . Computing Technology Industry Association (CompTIA)
. Information Systems Audit and Control Association (ISACA)
. SANS
. Center for Internet Security
. Information Systems Security Association (ISSA)
. Symantec Community
. Healthcare Information and Management Systems Society (HIMSS)
. International Institute of Business Analysis (IIBA)
. Cloud Security Alliance (CSA)