Summary
Overview
Work History
Education
Skills
Websites
Accomplishments
Certification
Timeline
Generic

KEVIN APAA

Gardena,CA

Summary

Information Security and Risk Analyst with over seven years of experience in cybersecurity risk management, technology vendor management (TPRM), and security operations within regulated environments. Expertise in information security governance and implementing risk-based controls to protect sensitive information throughout its lifecycle. Proven track record in conducting comprehensive vendor security assessments, prioritizing remediation efforts, and collaborating with system owners to integrate security controls early in project lifecycles. Proficient in navigating HIPAA, GDPR, and CCPA/CPRA privacy requirements, with strong command of control frameworks such as NIST CSF, NIST 800-53, ISO 27001, CIS Controls, and SOC 2. Hands-on experience supporting certification readiness through control mapping, evidence validation, risk documentation, and remediation tracking according to NIST and ISO standards.

Overview

14
14
years of professional experience
1
1
Certification

Work History

Sr. Information Security Analyst

HTC Global Services
10.2023 - 12.2025
  • Supported the enterprise Technology Vendor Management (TPRM) program by conducting end-to-end vendor/product/SaaS security assessments, reviewing security posture, data flows, and contract terms, and documenting risk ratings with actionable remediation recommendations.
  • Performed risk assessments and NIST SP 800-53–aligned control gap analyses to identify security weaknesses, document risk impact/likelihood, and recommend mitigation strategies for systems handling sensitive data.
  • Conduct due diligence using questionnaires and evidence review (SOC reports, ISO certificates, pen test summaries, data flow diagrams, incident history and BCP/DR artifacts); assign risk ratings, track remediation plans, and support renewal decisions and savings opportunities.
  • Tracked penetration testing findings through remediation and closure, validating corrective actions and documenting residual risk for risk acceptance or escalation.
  • Led the deployment and configuration of Proof-point Sigma DLP and ITM, integrating validated IOCs into SIEM/EDR and tuning detections to reduce false positives and expand coverage—resulting in the identification and containment of an insider threat attempt involving 5,000+ PHI records.
  • Daily reviewed SIEM logs and high-priority alerts, investigating and resolving critical/high-severity incidents, escalating when needed, and implementing containment actions to protect the environment..
  • Mapped vendor risks and control gaps to NIST CSF, NIST SP 800-53, ISO 27001, and CIS Controls, and validated privacy/regulatory requirements (HIPAA, GDPR, CCPA/CPRA) for systems processing sensitive data.
  • Assessed information security risks related to data handling, access management, logging, retention, and availability, and recommended controls to reduce unauthorized disclosure, modification, or loss.
  • Developed operational metrics and executive-ready reports for IRM leadership (vendor risk posture, remediation SLAs, control coverage, and incident trends) using Excel, PowerPoint, and dashboard reporting.
  • Conducted security evaluations and audits of vendor and internal systems, producing formal risk assessment reports and strategic recommendations for leadership.

SOC Analyst Level III

Innova Solutions
11.2022 - 08.2023
  • Monitored and triaged high/critical SIEM alerts (Rapid7 InsightIDR, Splunk), leading investigations and coordinating containment across endpoint, network, and cloud environments to reduce risk and limit impact.
  • Supported the InfoSec Manager with vendor intake, security due diligence, and third-party risk assessments for SaaS/IT services; coordinated evidence collection (SOC 2, ISO 27001, SIG/SAQ), analyzed control gaps, and documented risk ratings, exceptions, and remediation actions.
  • Assisted in vulnerability analysis, risk prioritization, and mitigation planning by correlating security findings with business impact and compliance requirements.
  • Developed vendor security assessment summaries and audit-support documentation, identifying control gaps, compensating controls, and remediation recommendations mapped to NIST CSF/NIST SP 800-53 and ISO 27001.
  • Led the development of incident response playbooks and executive-ready reports, presented findings and response procedures to senior leadership, and trained/mentored junior analysts to ensure consistent knowledge transfer and operational readiness.
  • Client: Subway
  • Remote

SOC Analyst

Cybahawk
07.2019 - 11.2022
  • Operated in a remote, tier-less SOC, independently managing the full incident lifecycle for 200–300 daily alerts—from triage and investigation through containment, eradication, and resolution.
  • Conducted malware analysis and forensic investigations using tools such as Wireshark, correlating telemetry across multiple log sources to identify malicious activity and validate threats.
  • Documented investigation findings (security observations, incidents, and control gaps) in detailed incident reports, translating results into NIST-aligned risk-impact summaries and mitigation recommendations; escalated confirmed threats to leadership and continuously improved detection and response workflows.
  • Remote

Security Professional

Matcal International
12.2017 - 05.2019
  • Supported security investigations using OSINT techniques and monitoring CCTV/security logs to identify anomalies and suspicious activity.
  • Supervised and coordinated a 50+ person security team at Hauser & Wirth (Downtown Los Angeles), ensuring consistent coverage, adherence to post orders, and safe daily operations.
  • Provided regular security status updates to management, including incident summaries, staffing/post coverage, and actionable recommendations to mitigate risk.
  • Worked independently and collaboratively to resolve urgent issues to protect lives and property.

I.T Support Specialist

Elwak Consulting
01.2012 - 06.2016
  • Handled 20+ tickets daily while maintaining 90%+ on-time closure against internal SLAs through triage, escalation, and follow-through.
  • Monitored system performance and alert queues to identify issues early, troubleshoot anomalies, and escalate incidents to reduce downtime.
  • Tested and validated new software and hardware prior to deployment, confirming compatibility, performance, and security requirements and documenting results for rollout approval.
  • Removed malware and security threats from laptops and desktops, performing isolation, remediation, patching, and verification scans to restore stable performance.

Education

Master of Science - Information Security & Assurance

Western Governors University
M.I
11.2026

Bachelor of Arts - Theater & Communication Arts

University of Jos
Jos, Nigeria
10.2010

Skills

  • Vendor risk management
  • Proficient in NIST and ISO frameworks
  • Risk assessment and mitigation expertise
  • Security audit evaluations
  • Data protection and access control
  • Incident response expertise
  • Experience in remediation planning and reporting
  • Intrusion detection
  • Network protocol analysis expertise
  • Risk management
  • Vulnerability assessment
  • Cybersecurity frameworks
  • Security monitoring
  • Malware analysis
  • Forensic analysis

Websites

Accomplishments

  • Performed third-party/vendor risk assessments by issuing and managing security questionnaires for 500+ software and hardware vendors, partnering directly with the Director of Security to evaluate risk and drive remediation.
  • Configured and deployed 2,500+ Rapid7 InsightIDR agents across enterprise endpoints and servers to expand SIEM visibility and detection coverage.
  • Deployed Proofpoint endpoint agents across 1,400+ assets, supporting DLP / Endpoint DLP / ITM policy enforcement and endpoint monitoring.
  • Led the team in reviewing and updating the organization’s Incident Response Plan (IRP) to support HIPAA Security Rule requirements and strengthen security incident readiness.
  • Partnered with the Director of Security to review and strengthen the Access Control Policy, identifying and deprovisioning stale/inactive accounts and unnecessary access to reduce unauthorized access and prevent data compromise.

Certification

  • CompTIA Security+
  • CompTIA Network+
  • Certified Ethical Hacker (CEH) - EC-Council
  • Certified SOC Analyst (CSA) - EC-Council
  • Splunk UBA / Core User Certification
  • IBM QRadar Certified Security Analyst
  • Certified Qualys Vulnerability Specialist
  • CISSP - Scheduled Exam: January 30, 2026

Timeline

Sr. Information Security Analyst

HTC Global Services
10.2023 - 12.2025

SOC Analyst Level III

Innova Solutions
11.2022 - 08.2023

SOC Analyst

Cybahawk
07.2019 - 11.2022

Security Professional

Matcal International
12.2017 - 05.2019

I.T Support Specialist

Elwak Consulting
01.2012 - 06.2016

Master of Science - Information Security & Assurance

Western Governors University

Bachelor of Arts - Theater & Communication Arts

University of Jos

Similar Profiles

CREATE PROFILE
KEVIN APAA