David O’Neal

Cybersecurity & GRC Analyst — turning frameworks into audit‑ready evidence and automating compliance at scale.

Resume Case Studies

Impact by the Numbers

  • Cut access review cycle time 40% through automation
  • Delivered audit evidence packages 2 weeks early
  • Mapped AWS guardrails to 50+ NIST CSF controls

Featured Projects

AWS Governance Lab

Identity Center, Config, Security Hub, budgets, screenshots

AWS

Risk Artifacts (Downloadable)

Risk register (CSV) and FAIR‑lite worksheet (MD) used in the case study.

Evidence

AWS Account Governance Case Study

Guardrails, least privilege, NIST CSF mapping

NIST CSF

How I Work

  1. Start from business impact → map to NIST CSF, ISO 27001, CIS.
  2. Prove controls with audit‑ready artifacts: policies, SOPs, tickets, CLI output.
  3. Automate the repetitive — patching, access reviews, findings triage.
  4. Write documentation that keeps audits from becoming archaeology.

Contact

Email: onealdavide@gmail.com  •  LinkedIn: /in/david-oneal