Kelly Khumbah
About Kelly Khumbah
Kelly Khumbah is a Vulnerability Management Associate at Fannie Mae with a background in IT security engineering and a degree in Geology/Earth Science from the University of Buea.
Current Role at Fannie Mae
Kelly Khumbah currently holds the position of Vulnerability Management Associate at Fannie Mae in the United States. In this role, Kelly is responsible for coordinating the remediation of security vulnerabilities, including managing and implementing various vulnerability management tools and processes.
Professional Experience at FedEx
Kelly Khumbah worked at FedEx from 2016 to 2022 as an Information Technology Security Engineer. In this role, Kelly conducted security incident investigations, created and managed security incident runbooks, investigated AWS GuardDuty alerts, and managed Splunk alerts and dashboards. Additionally, Kelly played a critical role in coordinating OS upgrades and ensuring privacy compliance under HIPAA regulations.
Education
Kelly Khumbah studied at the University of Buea, earning a Bachelor of Science (BS) degree in Geology/Earth Science from 2012 to 2015. This educational background provided a foundation in analytical and problem-solving skills, which have been essential in Kelly's roles in IT security and vulnerability management.
Vulnerability Management Responsibilities
During Kelly Khumbah's tenure in vulnerability management roles, responsibilities included creating and scheduling network discovery, vulnerability, and application scans. Kelly utilized tools like Qualys Virtual appliances and cloud agents for these tasks. Additionally, Kelly led daily vulnerability remediation status meetings and was involved in the analysis of AWS Inspector findings, engaging with impacted asset owners for remediation.
Notable Projects and Initiatives
Kelly Khumbah has coordinated the remediation of Log4j vulnerabilities across multiple applications and developed and tuned Defender ATP malware and exclusion policies. Additionally, Kelly planned and implemented Qualys WAS for application DAST scanning and managed the privacy components of the HIPAA Compliance Plan, ensuring contractor adherence to privacy requirements.