Resume

STEPHEN ANTWI

KAKUANTWI@YAHOO.com /347-768-9189/US CITIZEN/ACTIVE SECRET CLEARANCE

Standard/ Framework/ Controls

  • Security Controls Assessment/Continuous Monitoring
  • Nessus, ATO, ISA, MOU, IDS, IPS
  • NIST/FISMA/ EMASS
  • SSP, SAR, CP, CPT, PTA, PIA, POA&M, FIPS-199, FIPS 200
  • Experience with Microsoft Office package (Word, PowerPoint, Outlook, Share drive)
  • Excellent communication (verbal & writing) Skills

Certifications

  • COMPTIA SECURITY + EXPIRE: 2026
  • COMPTIA CYSA + EXPIRE: 2026

                                                                                                                                  

Education

Bachelor   OF SCIENCE IN CYBERSECURITY

OLD DOMINION UNIVERSITY- IN PERSUIT, VA                                                                                          DEC 2023

CYBERSECURITY CERTIFICATION TRAINING

OLD DOMINION UNIVERSITY, VA                                                                                                                 May 2021

Work Experience

UNITED STATES NAVY, USS NORMANDY, NORFOLK, VA                                  Apr 2019 – Oct 2023

 INFORMATION ASSURANCE ANALYST

 

  • Reviews and analyzes existing C&A packages for completeness and compliance for the Department of Navy (DON)
  • Provides subject matter expertise with the development of security policy documentation that follows Federal Information Security Modernization Act (FISMA) requirements, and National Institute of Standards and Technology (NIST)
  • Conducts risk assessments regularly; ensures measures raised in assessments are implemented in accordance with risk profile, and root-causes of risks were fully addressed following NIST 800-30 and NIST 800-37
  • Evaluates and uploads Plan of Action and Milestones (POA&Ms) into Enterprise Mission Assurance Support Service (EMASS) and validates artifacts specified to remediate POA&M items.
  • Assesses security controls in accordance with assessment procedures defined in the Security Assessment Plan (SAP) through examination, interviews, and testing.
  • Prepares and delivers oral IA-focused presentations to technical and non-technical groups.
  • Assists penetration testers testing systems to determine the weakness in the infrastructure (hardware), application (software) and people to develop controls.
  • Performs Vulnerability Assessment to make sure that risks are assessed, evaluated and proper actions been taken to limit their impact on the Information and Information Systems

 

.

UNITED STATES NAVY, USS DECATUR                                                                                       Jan 2016 – Mar 2019

INFORMATION SYSTEM SECURITY ANALYST

  • Performed assessment of information systems, based on NIST RMF by examining, interviewing, and testing procedures in accordance with NIST SP 800-53 and NIST SP 800-53A.
  • Developed test plans, testing procedures and request for evidence needed to validate implemented controls.
  • Developed Privacy Threshold Analysis (PTA) and Privacy Impact Analysis (PIA) by working with the Information System Security Officers (ISSOs), the System Owner, the Information Owners, and the Privacy team.
  • Assessed threats, risks, and vulnerabilities in the system and identified mitigation requirements.
  • Generated, Reviewed and Updated System Security Plan (SSP), the Security Assessment Report (SARs), Security Assessment Plan (SAP) and Plan of Action and Milestone (POA&M).
  • Conducted POA&M management. Supported the remediation actions to correct assessment findings and updated Plan of Action and Milestone (POA&M).
  • Assisted the ISSOs in updating documents to be compliant with current policies such as SOPs for Patching, Vulnerability Scans, Privileged Users, Separation of Duties etc.