Aruna Mandala
@arunamandala
Senior Information Systems Security Officer specializing in cloud risk, Zero-Trust, and FedRAMP compliance.
United StatesWhat I'm looking for
I am a Senior Information Systems Security Officer with deep experience in Enterprise Risk Management, Zero-Trust Architecture, and Assessment and Authorization for cloud-centric systems.
I have implemented and audited information systems using NIST RMF and FedRAMP, managed System Security Plans (SSPs) for on-premise and SaaS/IaaS environments, and driven continuous monitoring and POA&M closure across federal agencies.
My technical work includes using tools such as CSAM, Nessus, Splunk, Xacta, RSA Archer, ServiceNow, and cloud platforms like AWS and Azure to reduce vulnerabilities, migrate control baselines, and improve security posture.
I hold multiple industry certifications (CISA, CISM, CCSK, CompTIA Security+, CGRC, AWS-CCP, AZ-900, ITIL) and I am a U.S. citizen with an active Public Trust clearance; I deliver pragmatic, standards-aligned security solutions to federal customers.
Experience
Work history, roles, and key accomplishments
Senior Information Systems Security Officer
Sanaru LLC
Oct 2024 - May 2025 (7 months)
Assessed USCIS compliance with DHS CISA Zero-Trust Maturity Framework and developed Zero-Trust processes and SOPs, supporting Security Authorization, Control Assessments, and ongoing authorization activities for cloud-centric systems.
Senior Information System Security Officer
US Patent and Trademark Office
Oct 2023 - Aug 2024 (10 months)
Developed and maintained System Security Plans for on-premise and SaaS systems, managed security control implementation and continuous monitoring, reducing monthly findings and migrating CSAM to NIST SP 800-53 Rev.5.
Information Security Analyst
TestPros Inc.
Aug 2020 - Sep 2021 (1 year 1 month)
Performed security assessments and ongoing authorization for multiple Moderate and High systems at CBP, produced authorization artifacts and risk acceptance documentation, and managed POA&Ms and vulnerability reporting.
Senior Information System Security Officer
Magnus Management Group
Jan 2020 - Aug 2020 (7 months)
Managed high-category federal systems for US Marshals Service, developed SSPs, incident response and contingency plans, monitored vulnerabilities via Nessus/Splunk, and improved security posture and governance for Microsoft 365 GCC High.
Information System Security Officer
CVP Corp.
Nov 2017 - Nov 2019 (2 years)
Developed the agency's first cloud-based System Security Plan and managed multiple FedRAMP-hosted systems, driving POA&M closure and coordinating IPTs to maintain accreditation and incident reporting.
Education
Degrees, certifications, and relevant coursework
Sri Krishnadevaraya University
Bachelor of Technology, Technology
Completed a Bachelor of Technology degree from Sri Krishnadevaraya University.
Tech stack
Software and tools used professionally
Availability
Location
United StatesAuthorized to work in
Job categories
Interested in hiring Aruna ?
You can contact Aruna and 90k+ other talented remote workers on Himalayas.
Message ArunaFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
