Nikita Reva

Last updated December 21st 2011
Resume powered by emurse

Nikita Reva, CISSP, CISA, ISO 27001-LA

Chicago, IL 60640 USA

312.753.8164

www.security-decisions.com

-

WORK EXPERIENCE

-

June 2011 - Current
Project Manager, Global Information Security

MARS Food

Chicago, IL
  • Develop strong collaborative relationships with business leaders within the organization to communicate and drive security initiatives.
  • Project Management of complex global security projects that have a companywide impact. Influence and negotiate with a broad range of global stakeholders to find the right balance between security and usability. Primary 2011 project has been the global implementation of Symantec Endpoint Protection 11 (SEP11).
  • Perform security assessments of 3rd party vendors, business partners and Cloud Based SaaS/IaaS/PaaS providers.
  • Assess and make recommendations based on extensive security questionnaires, phone interviews and assessments of SAS-70/SSAE16 reports. Assess network diagrams, policies, procedures and guidelines to determine security posture of providers. Assess and interpret 3rd party provided vulnerability and penetration testing reports. Present findings to the business in terms that matter to them.
  • Assess and make recommendations to ensure compliance with regulatory compliance such as SoX, PCI, HIPAA, EU Data Privacy Directive 95/46/EC and MA CMR 201 17.
  • Recommend and integrate countermeasures to ensure the confidentiality, integrity, and availability of data and technology assets.
  • Redesign the security assessment process to create separate assessments questionnaires for various types of assessments in alignment with ISO 27001 and the Cloud Security Alliance Guidance.

-

July 2007 - June 2011
Global SAP Security Analyst

MARS Food

Grand Rapids, MI
  • Assessed and implemented security and authorization for new SAP functionality, enhancements and projects to ensure they align with MARS SAP Security policies and standards.
  • Analyzed risk and implemented SAP application security controls according to established frameworks such as CoBIT and COSO.
  • Documented exceptions to MARS SAP Security policies and standards and ensured that appropriate compensating controls are implemented.
  • Coordinated with PricewaterhouseCoopers auditors to discuss application security controls, audit findings and remediation plans.
  • Created and delivered training to support transition of SAP Security related tasks to offshore teams. Served as SME for SAP Security tasks that offshore teams support.
  • Produced reports and delivered findings to Senior IT Management on control findings and opportunities for reducing risk. Performed weekly, monthly and quarterly audits of SoX control reviews to test control effectiveness and stability.

-

Dec 2006 - June 2007
Network Security Consultant

The Rehammn Group

Grand Rapids, MI
  • Administered two branch offices consisting of 100+ users and multiple servers. Regularly supported remote field users with all levels of technical problems.
  • Maintained all facets of the LAN environment. Technologies included: MS Server 2003, UNIX server, PIX firewall, Cisco VOIP phones, Cisco 2900 Routers/3500 Switches, Polycom video conference, and a mixture of Dell/IBM laptop hardware.
  • Administered Cisco VOIP communications utilizing Call Manager and Unity voicemail infrastructure.
  • Supported Point to Point VPN for remote clients to connect for Misys medical billing.
  • Contributed to the design and implementation of 10 site migration from Novell 6.5 to Microsoft Active Directory.

-

-

OBJECTIVE

-
Utilize my very strong communication and business skills to help champion security initiatives and drive maturity of the Information Security program.

-

EDUCATION AND TRAINING

-

June 2003 - April 2007

Davenport University

Michigan

BS Network Security with Honors

  • Network Security, Information Security, Networking

  • 3.8 Grade Point Average

-

Sept 2009 - July 2011

Depaul University

Chicago, IL

Masters Information Security

  • Information Security, IT Audit, Compliance, Regulation

  • 3.5 Grade Point Average

-

CISSP

Chicago, IL

-

Inforonics LLC

Chicago, IL

  • ITIL V3 Certified

-

Jan 2011 -

ISACA

Chicago, IL

CISA

  • Information Systems Audit

-

-

SKILLS

-
Skilled, business focused, Information Security Professional with diverse knowledge and proficiency in Information, Network and Application Security. Passionate about utilizing technology to enable business objectives while minimizing risk and ensuring compliance with published policies and standards. Possesses the unique combination of technical security skills combined with very strong communication and business skills to help champion security initiatives and drive maturity of the Information Security program. Strong knowledge of Cloud Security.

-