Experienced Information & Cyber Security Professional with 10+ years in the industry. Skillful in architecting, implementing, and administering solutions protecting networks, systems, and information assets. Expertise in advising business units on effective security best practices and performing in-depth security assessments. Notable success in strategizing for institutional security awareness and communication. Experience in developing IT policies, procedures, guidelines, standards, and other documentation. Outstanding project and program leader skilled in managing, motivating and guiding teams. Able to thrive in fast-paced, dynamic, and challenging environments where accuracy and efficiency matter. Enthusiastic about personal growth and continuing professional education.
Krista Mikaële Théodore
INFORMATION & CYBER SECURITY PROFESSIONAL
Phone:
657.200.8605
Email:
EXPERIENCE
1/2020-Present
Adjunct Professor
FLORIDA INTERNATIONAL UNIVERSITY
-
Teaching courses in Business Telecomm. Systems & Info. Systems Security and Information Systems Management
-
Assisting in recruitment efforts for the COB Information Systems and Business Analytics Business Information Security Track
-
Serve as mentor and preliminary judge for ATOM Cybersecurity Strategy Challenge
9/2017-Present
Cyber Security Analyst
MEMORIAL HEALTHCARE SYSTEM
-
Propose and implement best practices for risk reduction across a broad range of enterprise applications, systems, networks, and interfaces
-
Administer and maintain various solutions such as Web Protection and Gateways, Email Security, Network Access Control, Endpoint Protection, Multifactor Authentication, etc.
-
Manage and monitor the enterprise Data Loss Prevention (DLP) Program: Email, Network, CASB
-
Advocate for continuous improvement and operational efficiency of the cyber team – including methodologies, processes, use cases, knowledge base articles and playbooks
-
Liaise with Privacy, Legal, IT management, and Compliance departments
-
Developed an information security awareness and education program, including simulated phishing assessment planning and custom branding/content creation.
-
Operates within the Information Technology Security team, with primary emphasis on daily monitoring, investigations, along with interviews to gather information related to potential security breaches.
-
Monitors, investigates, and reports incidents of suspicious activity or possible compromises to Manager, IT Security.
-
Responsible for proactively analyzing events from privacy and security monitoring systems to identify potential threats, risk or breaches and takes the necessary approach to reduce their likelihood.
-
Assists with implementation of counter-measures or mitigating controls.
-
Provides input into tactical security initiatives and assists with maintaining Information Security Policies and Standards.
10/2013-9/2017
IT Security Engineer
UNIVERSITY OF MIAMI
-
Information Security, Compliance, and Assurance
-
Payment Card Industry (PCI) Professional
-
Conducted university-wide security assessments to evaluate compliance conditions with various regulations, laws and standards
-
Performed vulnerability scanning of enterprise assets
-
Advised university entities and business units on effective security practices, and strategize on potential remediation efforts.
-
Strategized for institutional security awareness and communication
-
Established formal security awareness program
-
Inaugurated University of Miami’s free cybersecurity conference for South Florida Info. Sec. Professionals
-
Instituted National Cyber Awareness Month program
-
Designed the University of Miami IT Security Website
-
-
Developed IT policies, procedures, guidelines and standards
-
Review unsupported hardware/hard drive purchase and server access requests
-
Monitored unauthorized access and inquires to payroll and financial systems
-
Supervised Information Security Interns
6/2011-8/2011
IT Intern
OUR KIDS OF MIAMI-DADE & MONROE, INC.
-
Edited and organized policy and procedure documents supported and enforced by the Florida Department of Children and Families
-
Shadowed senior executive meetings discussing business and IT strategic initiatives
-
Reviewed audited agencies
-
Authored Parent/Teen internet communication awareness document
6/2010-8/2010
IT Compliance Intern
ROYAL CARIBBEAN CRUISES, LTD.
-
Established Information Security Awareness Newsletter
-
Installed Cisco VPN, RSA Software and soft token
-
Monitored direct database access
-
Supervised AWARE Hotline for any interruption in service or unauthorized access (hotline set up by a third-party provider for RCCL employees to report/communicate potentially harmful, unethical, and illegal activity).
-
Updated ITLC Policy Repository
-
Edited procedure documents
EDUCATION
2017, 2018, 2023
Information Security Training
SEC488: CLOUD SECURITY ESSENTIALS
The SANS Institute
-
Facilitator - SANS Baltimore 2023
-
CloudWars Champion
SEC504: HACKER TOOLS, TECHNIQUES, EXPLOITS, & INCIDENT HANDLING
The SANS Institute
-
Facilitator - SANS Atlanta 2018
SEC401: SECURITY ESSENTIALS BOOTCAMP STYLE
The SANS Institute
-
Facilitator - SANS Atlanta 2017
2015-2016
Master of Science
INFORMATION SYSTEMS
Florida International University, Chapman Graduate School of Business, 3.97
-
Honored with the FIU Business MSIS Fall 2016 Citizenship Award & Highest GPA Award
-
Nominated for FIU World's Ahead Graduate
2009-2013
Concurrent Bachelor of Science
SECURITY & RISK ANALYSIS: Information and Cyber Security
INFORMATION SCIENCES & TECHNOLOGY: Integration and Application
The Pennsylvania State University, 3.64
-
The Mildred S. Bunton and Calvin H. Waller Undergraduate Fellow
-
ITWomen Scholarship Recipient
-
College of Information Sciences and Technology Scholarship Recipient
-
Gamma Tau Phi, IST Honor Society
-
National Honor Society of Leadership and Success
CERTIFICATIONS
Global Information Assurance Certification Certified Incident Handler (GCIH)
Payment Card Industry
Professional
Certified Security Compliance Specialist
Global Information Assurance Certification Security Essentials (GSEC)
NSTISSI No. 4011 Information Systems Security (INFOSEC) Professional
Qualys Certified Specialist - Vulnerability Management
CompTIA Security+ ce
Executive Women’s Forum "The Leader Within" Leadership Development Program
Cybrary Micro Certifications:
-
TCP/IP Skill Certification
SKILLS HIGHLIGHT
Information Protection
Network and System Security
Data Loss Prevention
Incident Response
Security Awareness & Education
Vulnerability Managment
Risk Management
Communication
Team Building
Consulting
Strategy
Leadership
Public Speaking
Training
FEATURES
DARK READING
"10 More Women in Security You May Not Know But Should" (2018)
PENN STATE | NEWS
IST grad passionate about technology, shrinking gender gap in IT
DARK READING
"8 More Women in Security You May Not Know But Should" (2022)
#WeCyberToo Talent Spotlight
HiddenCyberFigures.com - PAYING IT FORWARD: CELEBRATING & EDUCATING #HIDDENFIGURES IN CYBER SECURITY
FRAUVIS Podcast
Inspirational Stories of Black Women in Tech
Interview with Naya Moss, Founder + CEO, FRAUVIS: The community and platform for elevating black women in tech
2018 Storytellers Winner
A Celebration of Women’s Stories presented by Target and the Conference for Women
Women of Wonder Career Panel
2016 NAF Mega Student Industry Conference “Paving the Way to a Future Career.”
INVOLVEMENTS
Director of Marketing
The Red Team Village is focused on training the art of critical thinking, collaboration, and strategy in offensive security. The RTV brings together information security professionals to share new tactics and techniques in offensive security.
Board Member, Mentor & Role Model Speaker
ITWomen works to narrow the gender gap across technology through proven programs that Inspire, Educate and Empower girls and women to advance in tech. The Virtual Mentor program complements our Scholarship program by ensuring that our college scholarship awardees get the invaluable support of a another career woman throughout their college journey to their IT or Engineering degree. Role model speakers share expertise and experience with local middle and high school girls interested in IT and engineering related careers, in order to reach their full potential and to make inroads to closing the gender gap in these fields.
Technology & Digital Immigrants Project
Providing education, training, and awareness to individuals born before the widespread adoption of digital technology.
Project Semicolon
Presenting hope and love for those who are struggling with depression, suicide, addiction, and self-injury.