Open to opportunities

Ernest User

@ernestuser1

Message

Accomplished IT Risk Compliance Analyst with expertise in cybersecurity.

United States

Message

What I'm looking for

I am looking for a role that fosters collaboration, encourages innovation, and offers opportunities for professional growth in cybersecurity.

I am an accomplished IT Risk Compliance Analyst with over 7 years of experience specializing in risk mitigation, cybersecurity, and compliance management. My expertise lies in leading Governance, Risk & Compliance (GRC) programs and driving security initiatives that ensure compliance with global standards such as ISO 27001, NIST, PCI DSS, HIPAA, and GDPR.

Throughout my career, I have demonstrated a proven ability to collaborate across cross-functional teams to streamline security operations and respond to incidents. I have successfully developed executive dashboards using Power BI and Tableau, providing actionable insights that drive strategic decisions and enhance security postures. My commitment to continuous improvement has led to significant reductions in organizational cyber risk and improved operational efficiency.

Experience

Work history, roles, and key accomplishments

Current

IT Risk Compliance Analyst

Current

Citi Bank

Oct 2022 - Present (2 years 8 months)

Led the development and implementation of IT risk management frameworks, ensuring full alignment with internal policies and global regulatory standards, enhancing compliance by 30%. Utilized SIEM tools, including Splunk and IBM QRadar, to monitor real-time security events, identifying and mitigating emerging cyber threats. Conducted vulnerability assessments using Nessus, Qualys, and Rapid7, ident

IT Risk Management Splunk QRadar Nessus Qualys Rapid7)Power BI Tableau Incident Response GRC

GRC Analyst

Morgan Stanley

Jun 2020 - Sep 2022 (2 years 3 months)

Designed and implemented comprehensive GRC strategies, enhancing the company’s security posture and ensuring adherence to ISO 27001, NIST, PCI DSS, GDPR, HIPAA, and SOX standards. Managed risk assessments and audits using RSA Archer and SAP GRC, driving continuous security improvements and reducing compliance gaps by 25%. Leveraged SIEM technologies like Splunk and IBM QRadar to conduct continuous

GRC ISO 27001 NIST PCI DSS GDPR RSA Archer Splunk QRadar Power BI Tableau

SOC Analyst

Intel

Aug 2018 - May 2020 (1 year 9 months)

Monitored and analyzed security events in real-time using SIEM tools like Splunk and IBM QRadar, improving early detection of cyber threats by 30%. Conducted regular vulnerability assessments using Nessus and Qualys, mitigating risks across 300+ network endpoints and improving system security by 20%. Developed and refined incident response protocols in accordance with ISO 27001 and NIST frameworks

SIEM Splunk QRadar Nessus Qualys ISO 27001 NIST Wireshark Digital Forensics Incident Response

Education

Degrees, certifications, and relevant coursework

Per Scholas

Certificate, Cybersecurity Analyst

Completed a comprehensive program focused on cybersecurity analysis. Gained expertise in identifying, analyzing, and mitigating cyber threats.

Grand Canyon University

Bachelor of Science, Cybersecurity

Acquired a strong foundation in cybersecurity principles and practices. Focused on protecting systems, networks, and data from cyber threats.

University of Yaoundé

Bachelor of Science, Computer Science

Studied the fundamentals of computer science, including programming, data structures, and algorithms. Developed a strong analytical and problem-solving skillset.