Andrea Kim - Security GRC Specialist, Kirkland and Ellis

Feedback from Andrea’s ex-colleagues

Let me see

Keep in touch with meI'm using Intch to connect with new people. Use this link to open chat with me via Intch app

Work Background

Kirkland & EllisSecurity GRC Specialist II

Jan. 2025United StatesClient Security Audit Response, Compliance Management, Certification Lifecycle Management, Vulnerability Management

Whisker LabsCyber Security & Compliance Analyst

May. 2023 - May. 2024United States

Yello.coCyber Security Analyst

Feb. 2021 - Apr. 2023United StatesYello provides an end-to-end talent acquisition platform built for enterprise and fast-growing recruiting teams to strengthen employer brand, drive hard cost savings and maximize ROI ● Worked on Yello’s security initiatives with heavy focus on FedRAMP authorization of Yello’s Infrastructure. ● Implemented, documented a process for Fedramp’s monthly continuous monitoring (ConMon, POA&M) ● Owned 100% of scanning, analysis and submissions of identified Vulnerabilities for both commercial and Government offering. ● Assisted in 2 SOC2 audits as well as 2 Fedramp audits with providing evidence of controls. ● Monitored, evaluated, and maintained systems and procedures to safeguard internal information systems, network, databases, and Web-based security ● Saved the company $20k on third party penetration testing services by recommending an alternate provider ● Further saved the company $30k by negotiating a lower price to combine it with FedRAMP audit. ● As part of Yello’s Incident response process, monitored systems, network, databases and Web for potential system breaches via a SIEM solution. ● Triaged alerts from our SIEM tool internally ● Took over Yello’s ISO responsibilities during leave of absence (3 months) , working closely with the Company stakeholders to ensure continuity of security operations was maintained. ● Educated and communicated security requirements and procedures to all users and new employees via In person training. ● Recommended and implemented changes to enhance systems security and prevent unauthorized access ● Researched security trends, new methods, and techniques used in unauthorized access of data in order to preemptively eliminate the possibility of system breach ● Ensured compliance with regulations and privacy laws via stakeholder meetings. ● Maintained Yello Security tools and processes to protect Customer and Yello information ● Provided OWASP security training to Developers to ensure annual training requirements are met.

Luta SecurityTier 2 Triage Vulnerability Case Manager

Jun. 2020 - Jul. 2020Chicago, Illinois, United States

GogoIT Security Analyst

Jan. 2019 - Jun. 2020Chicago, IllinoisVulnerability Management, Risk and Threat Assessments; STRIDE, Product/Software Security

CyberSecurity NPCo-Founder, Board Member, Accessibilty Director, Ambassador

Jan. 2018Chicago, IllinoisCyberSecurity NonProfit (CSNP) is a global organization dedicated to promoting cybersecurity awareness and education. Our goal is to make security knowledge and training accessible, so everyone can learn how to protect themselves and their organization from cyber threats. We address the growing demand for security professionals by facilitating career development and building a supportive and inclusive cybersecurity community, particularly for underrepresented groups. We accomplish this by hosting free monthly events featuring presentations, networking, hackathons, discussion panels, and technical workshops.

ArityAndroid Application Developer, Engineering - DaaS, Emerging Businesses

Jan. 2017 - Jan. 2019Chicago, IllinoisI built test applications on the Android platform. I wrote Python scripts as tools for analyzing sensor data captured from cell phones and connected car devices. My work enabled data to be utilized by our Data Scientists to provide comprehensive analysis and insights into driving behavior and safety in the rapidly changing mobility landscape. I was also an accessibility advocate in my office and started a group of dedicated individuals whose goal was to make sure the company keeps accessibility in mind when building products.

OurCapsule, Inc.Android Developer

Oct. 2016 - Jan. 2017Chicago, ILBegan process of building a a geo-gated and time-gated messaging app that allows senders to control the context in which their messages are received.

KK's Pet SittingFounder and Director

Jan. 2006 - Nov. 2016Chicago, ILManaged daily operations and scheduling of pet care company, cultivated relationships with clients, created strong social media presence and hired contract employees as needed. Used HTML and CSS to create website, Excel for customer database and all social media outlets to keep clients updated on their pets.

Andrea For AnimalsFounder and Director

Jan. 2005 - Dec. 2016Chicago, ILCreated organization dedicated to supporting rescues in Chicago through fundraising. Built affiliate marketing website to raise money for rescues with HTML, created new fundraising venues for rescues using new technology,networked shelter pets via social networking sites to find them good homes, assisted in urgent pet rescue situations, began production of a rescue documentary film, “Chicago To The Rescue”.