Paul Njingang Ngwa, B.Sc, CISM

Sr. Information Security Consultant/VM | Security + | CISM |Qualys Cloud | Tenable | NMAP | Snyk | PCI-DSS/HIPAA | IAM/Microsoft Entra ID | SSO | OKTA | Reducing risk $ Strengthening security posture

Columbus, Ohio Metropolitan Area

About

I am a highly skilled professional, passionate about Cyber Security and safeguarding organizational assets. I assist in many different areas with a main responsibility in leading our organizational vulnerability management program currently using Qualys Cloud as our vulnerability scanner and Qualys agents that are installed on our endpoint devices. I create and manage different scans, review the scan results upon completion, prioritize the vulnerabilities using RBA (Risk-base approach) and engage assets owner for remediation. This approach ensures that vulnerabilities are remediated within our organizational SLAs. In terms of cloud, I have use AWS Security Hub to detect and report any security misconfiguration so they can be addressed as soon as possible. I also do assist with investigating different security incidents as they arise such as Malware, Bruteforce, Phishing emails and conducting phishing campaign etc. I also assist with PCI/HIPAA risk compliance such as gathering and providing evidence for different security controls using JIRA and other tools. I therefore, bring a wealth of experience in threat and vulnerability management, network security, IAM and compliance adherence. With a proven track record of implementing robust security measures and leading teams to mitigate risks effectively, I thrive in dynamic environments where I can leverage my technical expertise and analytical prowess to deliver measurable results. I have also led projects such as onboarding Qualys agent to our environment, onboard Snyk to our environment. I also led a project in identifying all systems running unsupported OS or applications. With a focus on proactively monitoring, assessing and prioritizing vulnerabilities, leveraging various scanning tools like Qualys, Nessus, Snyk, Wireshark, Nmap, SIEM, Microsoft Entra ID, Okta etc. With a proactive mindset and a deep understanding of emerging cyber threats, I am instrumental in maintaining the confidentiality, integrity, and availability of critical data and systems in an organization. I Collaborate closely with IT teams to implement patches, configurations, and other remediation measures to address identified vulnerabilities efficiently and timely. Thus, helping to fortify an organization's defenses and resilience against cyber attacks, minimizing the risk of exploitation and potential data breaches. I am currently seeking opportunities where I can leverage my expertise to safeguard organizational assets and contribute to the success of a forward-thinking team. I am also open to learning new skills.

Experience

  • Sr. Information Security Consultant / Vulnerability Management at BNY Mellon
    Dec 2024 - Present · 1 yr 8 mos

    • Perform regular vulnerability scans on servers, endpoints, network devices, and cloud environments using Qualys, and create detailed reports on the findings of vulnerability assessments and risk analyses. • Recommending mitigation strategies to address identified vulnerabilities. • Analyze scan results, prioritize vulnerabilities based on risk, and recommend remediation actions to meet our SLA. • Performing routine assignment of tickets to IT and other teams to address vulnerabilities as part of a 'cyber hygiene' process. • Work with the DevOps team to conduct Image scans to identify vulnerabilities in the base image and components in the image before they are pushed to production using Jfrog X-ray. • Develop and maintain custom dashboards and reports using Qualys for security leadership. • Collaborate with IT, Application owners, and production teams to prioritize and remediate vulnerabilities based on risk to meet our SLA. • Collaborate with internal and external IT auditors to provide necessary audit evidence and documentation. • Work with the Cyber Threat Intelligence Group Team to identify emerging vulnerabilities, triage to see exposure in our environment, and recommend timely action plans. • Root cause analysis for vulnerabilities with flapping issues on assets. • Staying abreast with the latest cybersecurity trends, exploits, and best practices in vulnerability management. • Review the change management process for asset purge, false positive, vulnerability closure, and compensating controls.

  • FedEx (8 yrs 6 mos)
    • Information Security Analyst/Vulnerability Management
      Mar 2020 - Dec 2024 · 4 yrs 10 mos

      - Create, and tune Defender for endpoint malware and exclusion policies to improve endpoint protection - Create and coordinate quarterly phishing campaigns as well as security awareness training - Schedule and coordinate bi-weekly vulnerability remediation status meetings - Investigate multiple security incidents to ensure the confidentiality and integrity of systems - Responsible for coordinating enterprise vulnerability management lifecycle including scanning, generating reports, prioritizing, remediation and verification - Developed a framework for Prioritizing and categorizing high risk vulnerabilities to facilitate remediation - Perform web application scan and website malware monitoring using Qualys WAS and Malware Monitoring Modules - Responsible for performing ad-hoc scans for multiple asset owners - Troubleshoot and resolve multiple failed scan related issues across different platforms - Scan and review application Source codes with Snyk and coordinate remediation with application developers throughout the software development Lifecyle - Leverage CIS Benchmarks and PCI-DSS security standards in AWS Security Hub to assess security posture for multiple AWS accounts to identify and remediate cloud security misconfigurations - Coordinated the remediations of multiple high risk cloud security misconfigurations such as exposure of high-risk ports (SSH, RDP, Telnet, SMB etc) to the public thereby improving our cloud security posture - Established and maintained weekly vulnerability Coverage Metrics - Integrated AWS IAM Identity Center and Microsoft Entra ID to use SSO for accessing web console for multiple accounts in our AWS Organization improving our onboarding and offboarding process - Implemented Conditional access policies to restrict resource access to specific geographical regions using Microsoft Entra ID - Install, configure, and manage Qualys Virtual appliances and cloud agents

    • Cyber Security Analyst - IAM
      Apr 2018 - Mar 2020 · 2 yrs

      * Develop and implement IAM strategies and architectures, including designing and deploying procedures/controls such as identity provisioning, authentication, and SSO with SAML using Okta/Microsoft Entra ID. • Work with other IT team members to ensure seamless integration into the overall IT infrastructure • Administer and support the Okta/Microsoft Entra ID platform, including user provisioning, deprovisioning, and group management. • Integrate new applications with Okta using SAML, OIDC, SWA, and SCIM. • Develop and enforce identity and access policies in alignment with security best practices. • Administer and support the Okta/Microsoft Entra ID platform, including user provisioning, deprovisioning, and group management. • Integrate new applications with Okta/Microsoft Entra ID using SAML, OIDC, SWA, and SCIM. • Develop and enforce identity and access policies in alignment with security best practices. • Create and maintain up-to-date documentation to support IAM solutions access, policies, maintain integrity for audit review, and their configuration. • Integrated AWS IAM Identity Centre and Okta to use SSO for seamless access management and provisioning of AWS environment using SAML. • Deploying a user API for identity management, authentication, authorization, and access control. • Provide training and support to internal teams and end users on IAM processes and tools. • Participated in weekly security team meetings to provide guidance and support for developing enterprise security architecture. • Remain abreast of the latest security trends and advancements in IAM technology.

    • IT Support Specialist
      Jul 2016 - Apr 2018 · 1 yr 10 mos

      - Coordinated and controlled all technical activities in the zone - Create new active directory users and groups! - Install and configure network printers! - Design and implement active directory password policy. - Create and manage Active directory Organization unites (OU) - Installing printers and resolving printer's issues - Installing security cameras and troubleshooting them. - Responding to request for technical assistance by phone, emails and remotely