Darci Klees
Cedar Rapids,Iowa
Summary
Experienced professional focused on meeting or exceeding objectives seeking Third Party Risk Management position. Offers advanced training and knowledge of industry best practices. Recognized for leadership, planning abilities and clear, direct communication style.
Overview
25
25
years of professional experience
1
1
Certification
Work History
Senior Information Systems Security Analyst
Transamerica
03.1998 - Current
- Execute inherent risk questionnaires
- Conduct over 100 third party security risk reviews for third party vendors on an annual basis
- Document and review policies and procedures
- Participate in business partner reviews performing audits on company data as part of their risk assessments
- Engage in continuous learning of Third Party risk, processes, governance, and frameworks
- Work cross functionally with team members to support and drive a collaborate team environment
- Strong written and verbal communication skills across all levels of the organization
- Capable of working with diverse teams and promoting enterprise-wide positive security culture
- Has working knowledge of regulatory requirements and industry specific mandates to minimally include HIPAA/HITECH, FDA, EU/UK GDPR, NIST, HITRUST and ISO Cybersecurity Frameworks and State Breach Disclosure
- Collect vendor documentation and coordinate with other first-line control functions
- Perform due diligence on vendor documentation to identify risks, gaps, or issues
- Work with business units to communicate risk and develop mitigating controls or action plans
- Make decisions on risk items such as severity/impact, likelihood, and criticality
- Escalate and report on material risk elements to business risk officers and leadership, as needed
Entitlement Review Analyst
Transamerica
Cedar Rapids, IA
04.2006 - 03.2014
- Performed over 50 Entitlement reviews annually for SOX critical and non-SOX critical audits on internal applications
- Administered (create, delete, update, transfer) user accounts in various platforms; Lifepro, Bonus Workbench, Cyberlife Mainframe regions, AWD
- Participated in GCC E&Y audits for L&P
Data Security Analyst
Transamerica
Cedar Rapids, Iowa
03.1998 - 04.2006
- Administered over 500 (create, delete, update, transfer) user accounts in Active Directory, Filenet, Blackberry and VPN on an annual basis
- Performed network permissions using Active Directory while ensuring SOX regulations are maintained
- Provided second level support for Customer Service Center and work with DSC on escalated issues
- Ran account lock-out reports using Arcsight
- Provided on-call support for priority security issues after hours
Education
Bachelor of Science - Elementary Education
Mt. Mercy University
Cedar Rapids, Iowa05.1993
Skills
- Third party risk assessment
- Active Directory permissions
- Quick learner with multi-tasking skills
- Document Library Maintenance
- Standards Enforcement
- Supplier Tracking
- Compliance Risk Management
- Vendor Contracts
- Investigative Auditing
- Risk Identification
- Customer Communication
- Regulatory Requirements
Certification
- Certified Third Party Risk Professional (CTPRP), Shared Assessments - July 2017 - Current
Timeline
Entitlement Review Analyst
Transamerica
04.2006 - 03.2014
Data Security Analyst
Transamerica
03.1998 - 04.2006
Senior Information Systems Security Analyst
Transamerica
03.1998 - Current
Bachelor of Science - Elementary Education
Mt. Mercy University
Similar Profiles
SAMUEL EYONGETAHSAMUEL EYONGETAH
Life Insurance Agent at TransamericaLife Insurance Agent at Transamerica
Dániel HajduDániel Hajdu
Senior Accountant at TransamericaSenior Accountant at Transamerica
Julian UwazieJulian Uwazie
Sr. Client Engagement Associate - Remote at TransamericaSr. Client Engagement Associate - Remote at Transamerica
JOHN FREELJOHN FREEL
Director of Procurement at TransamericaDirector of Procurement at Transamerica
Prince CaldwellPrince Caldwell
Crew Member at Raising Cane's Chicken FingersCrew Member at Raising Cane's Chicken Fingers