Eddie Keveney

Lead risk assessments for medical devices, cloud applications, and IT solutions; manage Continuous Controls Monitoring program and coordinate remediation with stakeholders. Administer risk workflows in LogicGate and apply HITRUST, NIST 800-53, and NIST CSF 2.0 standards to strengthen compliance posture.

Helped establish IT risk management and compliance function, conducted IT risk and control assessments, and drove remediation with infrastructure and vulnerability teams. Produced risk metrics, dashboards, and authored risk acceptances for legacy systems and overdue vulnerabilities.

Performed risk reviews of vulnerability scans and container security, monitored AWS environment and investigated alerts from AWS Inspector and ESET, and supported incident investigations and audit testing in cloud.

Managed incident response for phishing, malware, and compromised accounts; established vulnerability management program using Nessus and coordinated penetration testing and remediation with vendors. Contributed to policy updates and risk management processes.

Investigated SIEM alerts, led phishing and malware incident response, performed forensics and supported wireless security assessments to improve incident detection and response capabilities.

Supported 24x7 SOC operations, monitored IDS/IPS, firewalls, and endpoints, and produced vulnerability reports and malware analysis to support client network security.

Conducted vulnerability scans and delivered security assessment reports for nonprofits and small businesses to improve their security posture.

Completed a Master of Science in Cybersecurity with coursework and projects focused on applied cybersecurity practices and operations.

Completed a Bachelor of Arts with dual concentrations in Political Science and Philosophy, providing foundational analytical and critical thinking skills.