Franklyn Ihuoma

C

Information Systems Security Officer

Cherokee Federal - Information Systems Security Officer (DOENNSA)

Apr 2024 - Current (2 years 3 months)

Ensure implementation of DOE and NNSA cybersecurity policies and procedures. Conduct Assessment and Authorization (A&A;) activities for designated systems. Document protection measures within System Security Plans (SSPs). Provision and manage access controls for system users. Identify, assess, and document threats and risks to information systems. Capture and maintain system security artifacts. Perform cybersecurity testing and assessments and provide results to the ISSM. Evaluate security impacts of system changes and recommend implementation strategies. Identify cybersecurity training needs based on job roles. Conduct information system risk assessments. Respond to and report cybersecurity incidents. Develop and maintain disaster recovery

P

Cybersecurity Analyst

Privaxi, LLC

Nov 2023 - Feb 2024 (4 months)

Supported client cybersecurity assessments and compliance initiatives within regulated environments. Assisted with security control and risk assessments and preparation of assessment deliverables. Monitored security events using SIEM tooling and supported incident investigation efforts.

Information Systems Security Officer

RSI Security

Sep 2021 - Oct 2023 (2 years 2 months)

Performed system categorization and security documentation updates using NIST RMF standards. Provided A&A; support for systems seeking ATO and under continuous monitoring. Led stakeholder interviews to develop security control implementation statements. Conducted contingency plan testing and supported risk assessments and remediation efforts.

Information Systems Security Officer

StevenDouglas

Aug 2019 - Aug 2021 (2 years 1 month)

Managed security systems and ensured continuous monitoring and POA&M; tracking. Authored and maintained ATO packages and RMF security documentation. Oversaw audit readiness activities and maintained secure user access controls. Performed system risk assessments and evaluated the security impact of system changes. Supported incident response planning and security process improvements.

S

Security Control Assessor

STEVEN DOUGLAS

Jul 2018 - Jul 2019 (1 year 1 month)

Conducted security control assessments for classified and unclassified systems. Performed domestic and international assessments for federal information systems. Conducted ACAS vulnerability scans and analyzed results as part of security assessments. Examined system artifacts through document reviews, interviews, and technical testing. Determined control effectiveness using NIST 800-53A assessment procedures. Authored Security Assessment Reports (SARs) and documented assessment findings. Conducted annual security control assessments to support continuous monitoring.

F

Security Auditor

Frazier & Deeter

Jan 2017 - Jun 2018 (1 year 6 months)

Participated in HITRUST readiness and validated assessments for healthcare clients. Supported remediation planning and development of security control test procedures.

About

Detail

Timeline

Résumé