Skip to main content
AC
Open to opportunities

Amanda Caspa

@amandacaspa

Cybersecurity GRC analyst driving risk, compliance, and enterprise security posture.

United States
Message

What I'm looking for

I’m looking for a GRC-focused role where I can drive RMF/NIST-aligned governance, strengthen audit readiness, support IAM and data protection, and partner with technical teams to improve risk management and compliance outcomes.

I’m a Cybersecurity Governance, Risk & Compliance (GRC) professional with over six years of experience supporting enterprise governance, cybersecurity risk management, and regulatory compliance programs. I’m CRISC-certified and known for collaborating with technical and business stakeholders to strengthen an organization’s security posture and support compliance objectives.

In my current role as a Cybersecurity GRC Analyst, I coordinate cybersecurity governance and compliance activities and manage RMF documentation such as SSPs, SARs, POA&Ms, and audit evidence. I support programs aligned with NIST RMF, NIST CSF, HIPAA, PCI DSS, SOC 2, FISMA, and ISO 27001, including internal and third-party cybersecurity risk assessments and audit readiness.

I also focus on Identity & Access Management through logical access reviews, RBAC validation, Active Directory administration, and user access governance. I contribute to DLP and data classification efforts, endpoint security and vulnerability management (including analyzing Nessus results), incident response documentation and evidence collection, continuous monitoring, and compliance reporting using Power BI—while maintaining audit-ready documentation within CSAM.

Experience

Work history, roles, and key accomplishments

XZ
Current

Cybersecurity GRC Analyst

Xzentia

Nov 2019 - Present (6 years 8 months)

Coordinate cybersecurity governance and compliance activities supporting enterprise GRC initiatives. Manage RMF documentation (SSPs, SARs, POA&Ms) and audit evidence, conduct risk assessments, and support IAM, DLP/data classification, endpoint security, vulnerability management, continuous monitoring, and compliance reporting.

Education

Degrees, certifications, and relevant coursework

Howard University logoHU

Howard University

Bachelor of Science, Biology

Earned a B.S. in Biology with a minor in Chemistry.

Tech stack

Software and tools used professionally

Get matched with your dream remote job

Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan