Information Security Program Management

Development, implementation, administration, and maintenance of major Information Security governance and compliance frameworks (NIST - Risk Management Framework, COBIT, COSO).

Establishment and maintenance of organized, current, and accessible information security data repositories for NIST - Risk Management Framework (RMF):

   >   ​Organizational information security policy & procedures documents

   >   Regulatory compliance documents

   >   FISMA/FedRAMP Assessment and Authorization packages

   >   System Security plans

   >   ​Security & Privacy assessments

   >   IT Business Continuity & Disaster recovery plans

   >   Incident Response plans, Awareness & Training

   >   Access and Authorization forms

   >   Change management documentation

   >   Risk evaluation and mitigation documentation