Kender Saint-Juste
INFORMATION SECURITY · GRC ANALYST · IAM ANALYST
Professional Summary
GRC, Information Security, and IAM professional with a B.S. in Information Science (Information Security concentration, USF, 3.76 GPA) and five years of progressive experience at a global enterprise SaaS company — executing identity governance controls, access compliance documentation, and SOC 2-aligned audit evidence. Hands-on experience with JML lifecycle workflows, RBAC enforcement, SSO/SAML compliance triage, NIST CSF 2.0 policy development, and compliance gap analysis; CompTIA Security+ SY0-701 in progress (target September 2026), SC-300 planned.
Professional Experience
Founder — Juste™ LLC Mar 2026 – Present
Tampa, FL · Self-Employed
  • Built Least by Juste™ — live access review automation platform for SMBs (app.getleast.io); automates Google Workspace access reviews and generates SOC 2-aligned audit evidence for cyber insurance and compliance documentation.
Customer Support Specialist — Enterprise IAM & Access Governance Jan 2023 – Apr 2026
TeamViewer · Clearwater, FL
  • Executed JML provisioning/deprovisioning workflows for 200+ enterprise accounts, enforcing RBAC and least-privilege controls; identified and escalated policy violations and access anomalies as governance findings to security leadership.
  • Performed daily compliance gap analysis on enterprise SSO/SAML configurations (10–15 cases); assessed control deficiencies against SOC 2 and NIST CSF requirements, documented findings, and coordinated remediation with Level 2 engineering.
  • Selected as Internal Security Champion — led cross-functional compliance initiatives and supported SOC 2-aligned audit documentation and access control evidence collection cycles across 200+ enterprise accounts.
  • Authored 10+ SOPs and knowledge base articles documenting access control standards and authentication compliance requirements; translated regulatory obligations into actionable guidance for enterprise IT decision-makers.
Inside Sales Representative Jan 2022 – Jan 2023
TeamViewer · Clearwater, FL
  • Qualified enterprise IT stakeholders on identity governance and access control requirements across 30–50 monthly engagements; translated SOC 2 and SSO governance concepts for technical and non-technical buyers.
Sales Development Representative Jun 2021 – Jan 2022
TeamViewer · Clearwater, FL
  • Prospected 200+ enterprise accounts leading with compliance and access control discovery to identify SSO gaps, IAM deficiencies, and security risk exposure as qualification criteria.
Sales Consultant & Team Trainer Nov 2013 – Mar 2021
Best Buy · Stuart, FL
  • Designed and delivered onboarding training for new team members; created SOPs and training materials covering product knowledge and service standards. Consistently ranked among top performers in consumer electronics sales.
GRC & Identity Governance Portfolio
2026 · policy-documents/
Cybersecurity policy whitepaper anchored to NIST CSF 2.0; identified 4 risk conditions (V-01–V-04) and mapped each to specific NIST CSF 2.0 controls spanning the GOVERN, IDENTIFY, and PROTECT functions; documented HIPAA, FIPA, Florida Bar Rule 1.6(c), and NIST SP 800-63B compliance obligations. Includes NIST CSF-mapped compliance documentation and roles & responsibilities matrix.
2026 · framework-mapping/
Practitioner-level crosswalk mapping all 6 NIST CSF 2.0 functions to SOC 2 Trust Services Criteria; identified 5 coverage gaps with remediation guidance and dual-framework evidence collection matrix.
Apr 2026 – Present · Live Lab
Configured live tenant (3 users, 4 Conditional Access policies: MFA enforcement, legacy auth blocking, location-based controls, privileged access); simulated 6 JML lifecycle events; produced audit log evidence package mapped to SOC 2 CC6.1–CC6.3 and NIST 800-53 AC-2.
2025–2026
Quarterly access review workflow with RBAC matrix mapped to SOC 2 CC6.3; JML governance controls with SLA targets mapped to ISO 27001 A.5.15–A.5.18 and NIST 800-53 IA-2; phased MFA governance plan with break-glass procedures.
Skills & Frameworks
GRC Frameworks
NIST CSF 2.0 SOC 2 Type II ISO 27001 CIS Controls v8 NIST 800-53 HIPAA FIPA SOX (Awareness) COBIT (Awareness)
GRC Skills
Policy Development Gap Analysis Risk Register Audit Evidence Remediation Tracking Control Documentation Access Review Mgmt
Identity & Access
RBAC JML Lifecycle SSO/SAML/MFA Conditional Access Least Privilege Entra ID (Lab) Okta (Practicing)
GRC Tools
ServiceNow GRC Vanta/Drata MS Purview Azure Policy RSA Archer Jira Zendesk Excel
Education
B.S. Information Science
University of South Florida · Dec 2023
InfoSec Concentration · Minor: Entrepreneurship · GPA: 3.76
  • CIS 4365 Computer Security Policies — NIST CSF framework application, security standards development, compliance documentation
  • CIS 4361 Information Security Management (CISSP-aligned) — risk assessment, access control policy, incident response procedures
  • CIS 3360 Principles of Information Security (A) — foundational information security concepts and control principles
  • CIS 4204 Ethical Hacking — penetration testing, vulnerability analysis, security controls validation
Certifications
CompTIA Security+ SY0-701
IN PROGRESS · TARGET SEPT 2026
Microsoft SC-300
PLANNED · AFTER SECURITY+
Languages
English (Native) French (Native) Haitian Creole (Native)