Profiles search
Helmut Eshun
GRC/Vendor Risk Analyst|Has the passion for problem solving and is looking for a challenging career in information technology. My dedication to employers is shown by my ability to quickly adapt and execute tasks at hand.
Houston, TX, United States
Details
Education:
Master's degree
Business Administration and Management, General
Texas Tech University - Rawls College of Business
2016 : 2016
Bachelor's degree
Petroleum Engineering
Texas Tech University
2012 : 2015
Business Administration and Management, General
Texas Tech University - Rawls College of Business
2016 : 2016
Bachelor's degree
Petroleum Engineering
Texas Tech University
2012 : 2015
Experience:
• Performs risk assessments on organizational controls around information security including cyber and physical, business continuity and disaster recovery, resiliency, privacy, and governance
• Demonstrated expertise and practical experience in implementing and adhering to industry-leading cybersecurity standards and frameworks, including ISO 27001, NIST SP 800-171, NIST SP 800-53, COBIT, and PCI-DSS.
• Coordinates and manages the due diligence risk assessment of third-party services by internal subject matter experts
• Performs review of completed vendor assessment questionnaires for conformance to program objectives and methodology
• Collaborates with team members to track, update and improve Vendor Risk Management Program procedures and process
• Assists with providing monthly reporting and other matrices to GRC and Security leadership teams
• Prepares third-party risk assessment summary reports
• Builds relationships with internal stakeholders and vendors and encourages collaboration
• Monitors and assess supplier performance to ensure compliance with VRM programs, regulatory requirements and service level agreements
• Organizes the collection of required artifacts (e.g. SOC reports, flow diagrams, policy documents) from suppliers regularly
• Collects supporting documentation for external and internal audit requests.
• Works with business leaders and vendor relationship managers to document appropriate remediation plans to reduce identified vendor risks
2017 : Present
Sam's Club
Information Security Analyst
- Worked closely with professional engineers and project managers to conduct data analysis for a $2.1 million dollar TxDOT-sponsored culvert research project for load rating 11,000 pre-1980 reinforced concrete box culvert structures
- Collected, organized and evaluated existing culverts, interpreted data, identified systematic errors and communicated research findings via weekly staff syndication and feedback sessions
- Performed structural calculations utilizing culvert analysis software tools for data accuracy
2015 : 2015
Texas Department of Transportation
Research Assistant
• Demonstrated expertise and practical experience in implementing and adhering to industry-leading cybersecurity standards and frameworks, including ISO 27001, NIST SP 800-171, NIST SP 800-53, COBIT, and PCI-DSS.
• Coordinates and manages the due diligence risk assessment of third-party services by internal subject matter experts
• Performs review of completed vendor assessment questionnaires for conformance to program objectives and methodology
• Collaborates with team members to track, update and improve Vendor Risk Management Program procedures and process
• Assists with providing monthly reporting and other matrices to GRC and Security leadership teams
• Prepares third-party risk assessment summary reports
• Builds relationships with internal stakeholders and vendors and encourages collaboration
• Monitors and assess supplier performance to ensure compliance with VRM programs, regulatory requirements and service level agreements
• Organizes the collection of required artifacts (e.g. SOC reports, flow diagrams, policy documents) from suppliers regularly
• Collects supporting documentation for external and internal audit requests.
• Works with business leaders and vendor relationship managers to document appropriate remediation plans to reduce identified vendor risks
2017 : Present
Sam's Club
Information Security Analyst
- Worked closely with professional engineers and project managers to conduct data analysis for a $2.1 million dollar TxDOT-sponsored culvert research project for load rating 11,000 pre-1980 reinforced concrete box culvert structures
- Collected, organized and evaluated existing culverts, interpreted data, identified systematic errors and communicated research findings via weekly staff syndication and feedback sessions
- Performed structural calculations utilizing culvert analysis software tools for data accuracy
2015 : 2015
Texas Department of Transportation
Research Assistant
Company:
Sam's Club
Years of Experience:
7
Skills
Auditing, Customer Service, Cybersecurity, Energy, Engineering, English, HITRUST, Information Security, Information Security Awareness, Information Technology, ISO 27001, IT GRC, IT Risk Management, Leadership, Management, Matlab, Microsoft Excel, Microsoft Office, Microsoft Word, NIST 800-53, Oil & Gas, Payment Card Industry Data Security Standard (PCI DSS), Petroleum, Petroleum Engineering, PowerPoint, Problem Solving, Project Management, Public Speaking, Research, Risk Analysis, Risk Assessment, Risk Management, Sarbanes-Oxley Act, Strategic Planning, Team Leadership, Teamwork, Third Party Risk Management (TPRM), U.S. Health Insurance Portability and Accountability Act (HIPAA), Vendor risk
Profile Photo
