User:Teknoah/sandbox

Yannick Wacheseh Atekem (born 25 May 1995) popularly known as Nick Wacheseh is a Cameroonian Techpreneur. He founded Wacheseh Academy, Cameroon's largest eLearning platform.

Early life
·      Conduct a comprehensive review of Cloud System seeking Agency Authorization using FedRAMP standards and provide Authorization recommendation to the Authorizing Official.

·      Conduct continuous monitoring on SaaS applications that have been procured by the agency and provide status updates to the stake holders

·      Create, update, and revise System Security Plans, Contingency Plans, Incident Reports and Plan of Action & Milestones (POA&Ms).

·      Independently developed a variety of Security Authorization deliverables including System Security Plans, Security Assessments Reports, Configuration Management Plans, Contingency Plans, and POA&M.

·      Reviews Privacy Impact Assessment (PIA) document after a positive PTA is created and ensure PII findings are recorded in the System of Record Notice (SORN).

·      Generated, reviewed, and updated System Security Plans (SSP) against NIST 800-18 and NIST 800 53 requirements.

·      Performed ongoing continuous monitoring using NIST 800-137 Rev 1 as a guide.

·      Created Splunk dashboards to capture all customized logs generated by systems and applications.

·      Assisted with compliance reviews and conduct audits to ensure information systems (IS) maintain the authorization baseline

·      Kept current with vulnerabilities, attacks, and countermeasures as well as devoting time to research and development activities

·      Implemented processes and manage tools used to identify vulnerabilities (Nessus) and track their remediation within the DOT environment

·      Analyzed penetration test results and engage with technology partners and business units in order to resolve identified vulnerabilities within SLAs

·      Reviewed and update Contingency Plans (CP) and participated in the Contingency Plan Tests (CPT)

·      Ensured that risk mitigation activities are taking place and appropriate documentation is provided from the project team(s), or customer

·      Managed the Vendor Due Diligence program which ensured all clients (PI) personal information stored by vendor's is secured/encrypted while being backed up and transferred over the internet

·      Created new risk assessment questionnaires requested by customer firms, partners, insurance companies based on types of information stored and current NIST standards

Career
·      Conduct a comprehensive review of Cloud System seeking Agency Authorization using FedRAMP standards and provide Authorization recommendation to the Authorizing Official.

·      Conduct continuous monitoring on SaaS applications that have been procured by the agency and provide status updates to the stake holders

·      Create, update, and revise System Security Plans, Contingency Plans, Incident Reports and Plan of Action & Milestones (POA&Ms).

·      Independently developed a variety of Security Authorization deliverables including System Security Plans, Security Assessments Reports, Configuration Management Plans, Contingency Plans, and POA&M.

·      Reviews Privacy Impact Assessment (PIA) document after a positive PTA is created and ensure PII findings are recorded in the System of Record Notice (SORN).

·      Generated, reviewed, and updated System Security Plans (SSP) against NIST 800-18 and NIST 800 53 requirements.

·      Performed ongoing continuous monitoring using NIST 800-137 Rev 1 as a guide.

·      Created Splunk dashboards to capture all customized logs generated by systems and applications.

·      Assisted with compliance reviews and conduct audits to ensure information systems (IS) maintain the authorization baseline

·      Kept current with vulnerabilities, attacks, and countermeasures as well as devoting time to research and development activities

·      Implemented processes and manage tools used to identify vulnerabilities (Nessus) and track their remediation within the DOT environment

·      Analyzed penetration test results and engage with technology partners and business units in order to resolve identified vulnerabilities within SLAs

·      Reviewed and update Contingency Plans (CP) and participated in the Contingency Plan Tests (CPT)

·      Ensured that risk mitigation activities are taking place and appropriate documentation is provided from the project team(s), or customer

·      Managed the Vendor Due Diligence program which ensured all clients (PI) personal information stored by vendor's is secured/encrypted while being backed up and transferred over the internet

·      Created new risk assessment questionnaires requested by customer firms, partners, insurance companies based on types of information stored and current NIST standards

Inventions
·      Conduct a comprehensive review of Cloud System seeking Agency Authorization using FedRAMP standards and provide Authorization recommendation to the Authorizing Official.

·      Conduct continuous monitoring on SaaS applications that have been procured by the agency and provide status updates to the stake holders

·      Create, update, and revise System Security Plans, Contingency Plans, Incident Reports and Plan of Action & Milestones (POA&Ms).

·      Independently developed a variety of Security Authorization deliverables including System Security Plans, Security Assessments Reports, Configuration Management Plans, Contingency Plans, and POA&M.

·      Reviews Privacy Impact Assessment (PIA) document after a positive PTA is created and ensure PII findings are recorded in the System of Record Notice (SORN).

·      Generated, reviewed, and updated System Security Plans (SSP) against NIST 800-18 and NIST 800 53 requirements.

·      Performed ongoing continuous monitoring using NIST 800-137 Rev 1 as a guide.

·      Created Splunk dashboards to capture all customized logs generated by systems and applications.

·      Assisted with compliance reviews and conduct audits to ensure information systems (IS) maintain the authorization baseline

·      Kept current with vulnerabilities, attacks, and countermeasures as well as devoting time to research and development activities

·      Implemented processes and manage tools used to identify vulnerabilities (Nessus) and track their remediation within the DOT environment

·      Analyzed penetration test results and engage with technology partners and business units in order to resolve identified vulnerabilities within SLAs

·      Reviewed and update Contingency Plans (CP) and participated in the Contingency Plan Tests (CPT)

·      Ensured that risk mitigation activities are taking place and appropriate documentation is provided from the project team(s), or customer

·      Managed the Vendor Due Diligence program which ensured all clients (PI) personal information stored by vendor's is secured/encrypted while being backed up and transferred over the internet

·      Created new risk assessment questionnaires requested by customer firms, partners, insurance companies based on types of information stored and current NIST standards

Ventures
·      Conduct a comprehensive review of Cloud System seeking Agency Authorization using FedRAMP standards and provide Authorization recommendation to the Authorizing Official.

·      Conduct continuous monitoring on SaaS applications that have been procured by the agency and provide status updates to the stake holders

·      Create, update, and revise System Security Plans, Contingency Plans, Incident Reports and Plan of Action & Milestones (POA&Ms).

·      Independently developed a variety of Security Authorization deliverables including System Security Plans, Security Assessments Reports, Configuration Management Plans, Contingency Plans, and POA&M.

·      Reviews Privacy Impact Assessment (PIA) document after a positive PTA is created and ensure PII findings are recorded in the System of Record Notice (SORN).

·      Generated, reviewed, and updated System Security Plans (SSP) against NIST 800-18 and NIST 800 53 requirements.

·      Performed ongoing continuous monitoring using NIST 800-137 Rev 1 as a guide.

·      Created Splunk dashboards to capture all customized logs generated by systems and applications.

·      Assisted with compliance reviews and conduct audits to ensure information systems (IS) maintain the authorization baseline

·      Kept current with vulnerabilities, attacks, and countermeasures as well as devoting time to research and development activities

·      Implemented processes and manage tools used to identify vulnerabilities (Nessus) and track their remediation within the DOT environment

·      Analyzed penetration test results and engage with technology partners and business units in order to resolve identified vulnerabilities within SLAs

·      Reviewed and update Contingency Plans (CP) and participated in the Contingency Plan Tests (CPT)

·      Ensured that risk mitigation activities are taking place and appropriate documentation is provided from the project team(s), or customer

·      Managed the Vendor Due Diligence program which ensured all clients (PI) personal information stored by vendor's is secured/encrypted while being backed up and transferred over the internet

·      Created new risk assessment questionnaires requested by customer firms, partners, insurance companies based on types of information stored and current NIST standards