1. Benjamin EssombeP
P: 470 535 9898 | email: benpenda1@gmail.com | Atlanta, GA
IT Security Analyst Consultant
I’m a results-driven Information System Security Consultant with experience in IT Audit, Risk
Management Framework, Vulnerability Management, Risk Assessment, and System Development Life
Cycle (SDLC). A proven project and team manager with aptitude for good customer service, leadership,
excellent communication and problems solving skills
PROFESSIONAL EXPERIENCE
Information System Security Analyst
PALSUR LLC.
February 2014 - Present
Conduct Security Assessment & Authorization tasks (Security Controls Testing;
Vulnerability Scanning; Penetration Testing; and Authorization Approval)
Develop, review, and update Information Security System Policies,
System Security Plans, and Security baselines in accordance with NIST/FISMA
Framework for federal agencies; SANS-20 and ISO 27001 ISMS Framework for
commercial and International organization.
Perform Incident report and management task
Apply appropriate information security control for Federal Information System
Develop and review System Security Plans, Plan of Action and Milestones,
Security Control Assessments, Configuration Management Plan, Contingency Plans,
Incident Response Plans (IRP), and other specific security documentation in accordance
with NIST SP 800-37 rev 1, 800-18, 800-53 rev 4 and 800-34.
Performed vulnerability and baseline scans on the client network using Retina
Network SecurityScanner (RNSS) and Nessus in accordance with the organization
Continuous Monitoring Plan and NIST 800-137.
Worked with IT Operations and Network Engineers to mitigate system vulnerabilities
discovered in network
Prioritized and managed service requests, incident management, escalation, and reporting
to maintain service level agreement.
Information System Auditor
MOTIVON Inc.
01/2012 – 02/2014
Conducted review of key IT General Control (ITGC)
Conduct audited walkthrough, assisted with Audit facilitation
Perform and document audit activities in accordance with professional industry
standards: COBIT, COSO, PCI, HIPPA, SOX and SOC SSAE 16
Tested IT SOX controls
Conducted IT Risk Assessment and Compliance Audit
2. Benjamin EssombeP
P: 470 535 9898 | email: benpenda1@gmail.com | Atlanta, GA
IT Business Analyst
ORISON IT Inc.
Jun 2011 – July 2012
IT Business Analyst
Planning and monitoring
Elicited requirements
Gathered business requirements
Translated and simplified requirements
Requirements management and communication
PCT / CCHT
Davita Inc
January 2003 – Jun 2011
Assisted in treatment quality improvement projects
Served as preceptor
Staff and patient scheduler
Served as access manager
Safety manager
Financial Manager
SOCOMAR Sarl, Cameroon
October 1998 – December 2002
Assisted in determining the company’s proper capital structure
In charge of financial department
Helped the company efficiently managed business expense
Engage in ongoing cost reduction analysis in all areas of the company
Prepares reports and audits current procedures and processes to monitor efficiency of
operations
EDUCATION
DeVry / Keller University Decatur, GA
Current Student MBA / Project Management
Devry University Decatur, GA
Bachelors of Business Administration / Finance, 2014
University of Douala Cameroon
Bachelors of Business Administration 2002
CERTIFICATION
CISSP in process