Uploaded File
add photo
Miranda
mirandasjobs@yahoo.com
843-441-1104
POB 18156
Parris Island, SC 29905
518-763-1369
IT SECURITY & RISK MANAGEMENT SPECIALIST
15 years experience W2
1
Recommendation
Average rating
87
Profile views
Summary

Miranda J. Carr is a Technical Professional with a strong focus on Information Security, especially with New York’s Office of Technology. She has over 8 years of experience in Project Coordination, Business Analysis and Technical Writing skills on security projects. Her combined IT Technical Writing and IT Business Analysis experience performing gap analyses using NIST 800-53 protocols and ISO 27002 controls, risk assessments and management, IT project management support, Business Use Cases and creation of high/low level reports for various audiences using the MS Office Suite and various other MS programs.

Her experience includes:

  • Project Management documentation and milestones using MS Project
  • Business Analysis and documentation using MS Office Suite
  • Process flow diagraming using MS Visio and keeping track of the project using MS Project, project documentation, setup and deployment, user and administrator guides written in MS Word.
  • Technical Writing skills including writing security policies, NIST 800/5x, FISMA, SOX, HIPAA and ISO 27002 standards and guidelines, white papers, program/software documentation and user guides.
  • Writing Security Risk Reviews & Assessments, Gap Analyses, plan of action and milestones (POA&M)and .
  • Administrator and end-user for MS SharePoint. Created and maintained user accounts and documents in SharePoint.

She recently relocated from NY to SC to be closer to her son who is stationed in the Carolinas. She is available for telephone interview within 24-hour notice.

Experience
Plant Coordinator
Agriculture
Oct 2016 - present
  • Answer phones and dispatch technicians to proper locales
  • Process order requests for new, disconnect and reconnect services
  • Handle technical calls that may come from internal or external customers
No skills were added
Remove Skill
Program Coordinator
Information Technology
Aug 2016 - Sep 2016
  • Processing Program incentive claims, verifying incentive status, and maintaining electronic and physical records of all projects;
  • Assisting in the preparation of Program reports and briefings, both internally, and for the client;
  • Handling Partner inquiries and complaints efficiently and professionally along with working with management to resolve any outstanding questions or issues;
  • Update and maintain Partner contract records in the Program database;
  • Coordination of Program meetings and recording minutes as assigned;
  • Assisting the Program staff in research projects;
  • Administrative oversight of Program Quality Control and Quality Assurance database;
  • Performs occasional office administrative duties as assigned;
  • Contribute to Program support efforts through marketing leads follow‐up with potential Partners as well as creating, editing, and updating Program materials, forms, and information pieces.
Quality Control Quality Assurance Program Coordinator
Remove Skill
IT Risk and Security Technical Writer
Information Technology
Oct 2014 - Sep 2015

YOH Staffing/Day & Zimmer

Recruited to assist GEGR with policy and procedure updates, Gap Analyses, ISO 27002 controls and day to day operational tasks. Responsible for ISO 27002 policy standards and Leading Practices

Responsibilities:

  • Information Security principles and practices, policies, guidelines and procedures as they moved away from National Institute Of Standards And Technology Controls (NIST) 800.5x and Federal Information Security Management Act (FISMA) guidelines and protocols to the ISO 27002 standards and controls
  • Wrote policies, standards and guidelines using the ISO 27002 Standards and controls working with templates and style guidelines for branding consistency
  • Updated current policies and procedures using the ISO 27002 Controls
  • Technical Writing to include creating Gap Analyses for program areas such as Remote Access, Risk Management, Data Centers and others.
    • Wrote Risk Assessments and reviews
    • Wrote plans of action and milestones (POA&M), Business Use Cases and Recommendations, RFIs and RFPs.
  • Performed day to day operational tasks as needed
Information Security FISMA Technical Writing Gap Analysis Risk Management Data Center POA&M Risk Assessment
Remove Skill
References
Average Rating

1 recommendation
Technical Services Specialist (Contractor)
Information Technology
Jun 2014 - Aug 2014

Recruited to assist supporting AAA Hudson Valley employees’ use of technology and the associated infrastructure, as well as generally assisting the Manager of the department with other day-to-day operational tasks. Responsible for installation, configuration, maintenance, and ongoing support of all aspects of the computing, networking, and voice infrastructure at all AAA Hudson Valley locations.

Responsibilities:

  • Workstations and peripheral hardware (monitors, AIOs, printers, phones, modems, etc.)
  • Physical and virtual servers and peripherals (plus KVMs, etc.)
  • Software (server and client operating systems, drivers, applications, licensing, etc)
  • Security (account permissions, file system security, etc)
  • Local Area Networking (Switching equipment, wiring, device management & configuration, etc.)
  • Wide Area Networking (Routing equipment, circuits, device configuration, etc)
  • Third-party networking (Internet access, VPN tunnels, etc)
  • Voice Connectivity (Voice over IP and analog, etc.)
VPN Voice over IP (VoIP)
Remove Skill
Tier I Analyst - Regional Service Desk-Work from Home
Nov 2012 - Dec 2013
American IT Solutions * Recruited to assist on the service desk using tools such as Active Directory, SAP, Proxy Master/Windows Remote Assist, Cisco VPN Clients, and Lync Live Meeting. Assisting clients with technical troubleshooting HP and Lenovo laptops, tablets, desktops and workstations in a lab, office and home environment Responsibilities: Active Directory v5.2.3 SAP 7.10 GUI Microsoft Office Suite/ OCS and Lync RSA/Entrust Token Administration Cisco VPN Client 4.8/AnyConnect Windows XP and 7 OS environments Concur/TTE GUI troubleshooting
Cisco VPN
Remove Skill
Information Security Specialist 2
Information Technology
Oct 2006 - Nov 2012
* Assisted with the research, design, analysis and implementation of security processes and procedures and performed business analysis and project management on recommended strategies and develop and implement security awareness training for management and employees within the NYS Office for Technology.
• Establish and managed enterprise-wide user provisioning programs including RSA, VPN, ITIL Security Management, Mainframe and privileged accounts and risk reviews and assessments. Assisted with the research, design, analysis, and implementation of security processes and procedures and performed business analysis and project management on recommended strategies and develop and implement security awareness training for management and employees within the NYS Office for Technology. Used MS Office Suite to include IBM Infopath software for risk/vulnerability assessment forms, used MS Word for documents working with templates and style guidelines for branding consistency, MS Visio for diagrams and Workflows, used MS Project software as well for presenting high level documentation, reports, and displays for presentations. Projects Included: (Logical Partitions) LPAR User Provisioning (IBM Mainframe Systems Requests) Cisco Client & SSL VPN User Provisioning ITIL Foundations and Security Management Certification Business Analysis: Audit Logging & Security Event Management project (ALSEM) ITIL Security Management project RSA/SecurID Token project - Wrote SSPs and wrote plan of action and milestones (POA&M) R-Sam Threat & Vulnerability project Assistant Project Management experience:
• Audit Logging & Security Event Management project (ALSEM) created privilege accounts in Active Directory (AD)
• ITIL Security Management project RSA/SecurID Token project
Information Security Vulnerability Assessments MS Active Directory Provisioning Auditing Business Analysis MS Project Project Management Cisco VPN
Remove Skill
Edit Skills
Non-cloudteam Skill
Education
Programming
University of Phoenix Online 2017
AOS
Bryant & Stratton Business Institute 2000
Skills
Cisco
2013
7
VPN
2014
7
Auditing
2012
6
Business Analysis
2012
6
Information Security
2015
6
MS Active Directory
2012
6
MS Project
2012
6
Project Management
2012
6
Provisioning
2012
6
Vulnerability Assessments
2012
6
Risk Assessment
2015
1
Data Center
2015
1
FISMA
2015
1
Gap Analysis
2015
1
HIPAA
0
1
MS SharePoint
0
1
MS Visio
0
1
NIST
0
1
POA&M
2015
1
Program Coordinator
2016
1
Quality Assurance
2016
1
Quality Control
2016
1
Risk Management
2015
1
SOX
0
1
Technical Writing
2015
1
Voice over IP (VoIP)
2014
1