Ebenezer Boadi
Union
Summary
Solution-Focused and dedicated GRC policy Analyst | Cybersecurity Analyst with years of experience in developing and implementing effective security policies, procedures, and controls to protect organizations from cyber threats. Proven ability to work collaboratively with cross-functional teams to ensure compliance with various security frameworks such as HIPAA, PCI-DSS, TRPM, ISO 27001, SOX, SOC. Skilled in conducting security assessment, risk analyses, and audits. Experienced leveraging on GRC tools such as process unity, RSA Archer, One Trust, ServiceNow and Bitsight
Overview
5
5
years of professional experience
1
1
Certification
Work History
Third Party Risk Analyst
LabCorp
Raritan
05.2022 - 07.2024
- Conducted a comprehensive risk assessment for over 100 third-party vendors, identifying potential vulnerabilities and compliance issues.
- Developed and implemented a standard risk evaluation framework, resulting in a 30% reduction in assessment time and improved accuracy.
- Collaborated with cross-functional teams to ensure third-party compliance with internal security policies and industry regulations, such as GDPR and CCPA.
- Monitored and reported on vendors' risk metrics, providing actionable insights to senior management.
- Led vendor risk training session for internal stakeholders, enhancing awareness and understanding of third-party risk management practice.
- Answering security questionnaire and reviewing artifacts.
- Onboarding vendors
Risk and Compliance Anayst
Hikma Pharmaceuticals
Cherry Hill
04.2020 - 02.2022
- Reviewed company policies against best practices to better understand level of compliance.
- Conduct a comprehensive, end-to-end information security risk assessment to identify, assess, and measure information security risks.
- Leverage the ServiceNow GRC platform in carrying out risk activities (Risk assessment, remediation, etc.)
- Assist in the assessment, monitoring, and tracking of the TPRM lifecycle activities (risk assessment & due diligence, and ongoing monitoring ).
- Complete assessment and questionnaires from third-party vendors and clients about internal IT security and data privacy policies.
- Review assessment findings and mitigating controls to optimize information security.
- Conduct security control testing and consultation with stakeholders.
- Facilitate third-party risk assessments for initial due diligence and ongoing oversight of third-party vendor services. This includes collection of documents and analysis, third party risk assessment questionnaire requirements reviewing audited reports of control (i.e, SSAE18, SOC Type II, PCI AoC/RoC)and other information to support full evaluation of any operational outsourcing risks.
- Perform daily tasks using operational GRC toolsets ( Governance risk and compliance ).
Risk Management Intern
FGO Logistics
Hamiton
06.2019 - 01.2020
- Assisted in the development and implementation of risk management strategies to mitigate potential financial losses.
- Conducted research on market trends and economic indicators to identify potential risks.
- Analyzed data using Excel and statistical software to support risk assessment and decision-making processes.
- Collaborated with senior analysts to evaluate the effectiveness of existing risk management policies.
- Prepared reports and presentations on risk findings and recommendations for stakeholders.
Education
Associate of Applied Science - Information Technology
Cornerstone University
Grand Rapids MI05-2019
Bachelor of Science - Information Technology
University of Education
Ghana 04-2017
Skills
- ServiceNow
- SOC 2 & 1 Review
- Risk Assessments
- Telecommunications systems
- Risk mitigation\Remediation
- PCI-DSS
- RSA Archer
- Security Questionnaire
- Business continuity
Certification
- CompTIA Security+Ce
Timeline
Third Party Risk Analyst
LabCorp
05.2022 - 07.2024
Risk and Compliance Anayst
Hikma Pharmaceuticals
04.2020 - 02.2022
Risk Management Intern
FGO Logistics
06.2019 - 01.2020
Associate of Applied Science - Information Technology
Cornerstone University
Bachelor of Science - Information Technology
University of Education
Similar Profiles
Joselin ArroyoJoselin Arroyo
Kit Production Assistant IIa at LabCorpKit Production Assistant IIa at LabCorp
Nelly LLiguichuzhcaNelly LLiguichuzhca
Phlebotomist at LabCorpPhlebotomist at LabCorp
Kerra WhiteKerra White
Service Representative at LabCorpService Representative at LabCorp
Jack MeyerJack Meyer
Specialty Development Executive at LabCorpSpecialty Development Executive at LabCorp
Madison PatrickMadison Patrick
Team Lead at WalmartTeam Lead at Walmart