Open to opportunities

David Sesenu

@davidsesenu

Message

Dedicated GRC Analyst with expertise in information security and compliance.

United States

Message

What I'm looking for

I am looking for a role that fosters growth, values compliance, and encourages collaboration.

I am a dedicated and results-driven GRC Analyst with a strong background in information security. I have a proven track record of effectively managing risk, ensuring regulatory compliance, and safeguarding critical data assets. My keen eye for detail and commitment to implementing best practices have allowed me to contribute significantly to the development and maintenance of robust governance frameworks and comprehensive compliance programs.

Throughout my career, I have successfully evaluated potential risks to IT infrastructures, ensured adherence to relevant regulations, and applied frameworks like MITRE ATT&CK to understand adversarial tactics. My experience includes conducting internal assessments, proposing new security controls, and actively participating in GRC processes to document and manage security findings. I am passionate about staying ahead of emerging threats and translating complex technical concepts into actionable insights, making me a valuable asset in ensuring the security and integrity of organizational data.

Experience

Work history, roles, and key accomplishments

Current

Information Security Analyst

Current

Peachford UHS Of Atlanta

Mar 2023 - Present (2 years 3 months)

Evaluated potential risks to the organization's IT infrastructure and ensured adherence to relevant regulations and standards. Applied the MITRE ATT&CK framework to identify adversarial tactics and assessed the security posture of third-party vendors.

Risk Assessment Regulatory Compliance Vulnerability Management

Information Security Analyst

Mi Casa Su Casa

Dec 2019 - Present (5 years 6 months)

Supported compliance efforts across various regulatory standards like NIST, HIPAA, and SOC-2. Conducted thorough evaluations of security and IT controls, providing strategic suggestions for alignment with business goals.

NIST HIPAA)SOC Policy Development Vendor Management Regulatory Compliance

GRC Analyst

New York City Department of Education

Sep 2015 - Present (9 years 9 months)

Executed and supported various cybersecurity compliance activities, including ISM reports and Privacy Impact Assessments. Managed the intake, review, monitoring, and reporting of policy exceptions to ensure alignment with organizational security policies.

Policy Management Risk Register Program Management

Education

Degrees, certifications, and relevant coursework

City University of New York, Lehman College

Bachelor of Art, Political Science

Studied Political Science at the City University of New York, Lehman College. Gained a foundational understanding of political systems, theories, and public policy.

Long Island University, Brooklyn, NY

Master of Science, Taxation

Pursued a Master of Science in Taxation at Long Island University, Brooklyn, NY. Developed expertise in tax laws, regulations, and financial implications.