Victor Bolling, SEC+ (SY0-601), InfoSec Risk Consultant, 6C Public Trust Clearance
IT Professional with DoD 8570 IAT Level II certification, 6C Public Trust clearance and 20+ years of federal government contract experience across multiple business areas. Analytical problem solver with excellent research and troubleshooting skills.
Security Assessments
⬥ Assess the security posture of enterprise environments, recommend mitigation strategies and implement appropriate security solutions
⬥ Establish risk tolerance benchmarks to determine the threshold of risk acceptance to risk avoidance in alignment with enterprise goals and objectives
⬥ Conduct security reviews (including third-party vendor assessments) to identify gaps in security architecture, and make recommendations aligned with the risk appetite and capabilities of the enterprise
⬥ Perform risk analysis (threat, vulnerability, and probability of occurrence) during initial audits and provide training, templates and checklists to staff to assess risk deriving from subsequent application or system changes
⬥ Develop documentation to assess the effectiveness of security controls including risk analysis, risk mapping, risk registers, and risk management plans in alignment with enterprise goals and objectives
⬥ Evaluate compliance with laws, regulations, standards and best practices including FedRAMP, FISMA, PCI DSS, HIPAA, SOX, GDPR, GLBA, NIST SP 800 series, and ISO 27000 series
⬥ Develop instructional materials and conduct "Train-the-Trainer" coaching sessions to equip designated personnel to deliver regular and ongoing employee security awareness training