Meet the Founder

Hi, I’m Jimmia Williams, Founder and Risk Leadership Advisor at Afronomias Cyber Services.

My path into risk leadership began in 2022, when I encountered a risk analyst role within an organization I was working for. At the time, I was advised not to apply—the role required experience and depth I had not yet fully developed. Rather than viewing that as a limitation, I treated it as a direction.

I intentionally moved into a risk-adjacent compliance role, where I gained firsthand exposure to governance, regulatory expectations, control environments, and organizational accountability. That experience helped me understand how risk operates beyond theory—how it shows up in real organizations, how it is managed (or overlooked), and how leadership decisions shape outcomes.

From there, I deliberately built my skills toward risk—expanding my background in cybersecurity, access management, governance, and advisory work so I could eventually serve organizations in the risk domain with confidence and credibility.

My interest in technology itself goes back much further. I’ve always been curious about how systems work and drawn to explaining complex ideas in ways others can understand. As a child, I admired the “tech expert” characters in cartoons—the ones who made sense of chaos and helped others move forward. That instinct stayed with me.

A pivotal moment came when my sister introduced me to the Generation USA Help Desk program, encouraging me to formally pursue IT as a career. That experience strengthened my technical foundation and confirmed what I already knew: I didn’t just enjoy fixing problems—I enjoyed explaining them, educating others, and helping organizations operate more effectively.

Over time, that passion evolved into a focus on risk leadership—helping organizations move from reactive decisions to intentional, well-governed risk management. I founded Afronomias Cyber Services to provide clear, independent risk advisory, grounded in governance, accountability, and leadership alignment.

Today, I work with executive teams, boards, and mission-driven organizations to help them identify, categorize, prioritize, and treat risk—so technology supports their mission, growth, and resilience rather than undermining it.

About the founder

 

 

My Professional Focus

 

Afronomias Cyber Services has evolved alongside my professional journey. What began as an early interest in managed services gradually matured into cybersecurity consulting—and ultimately into risk leadership—as my experience deepened and my capabilities strengthened.

In the early stages of my career, I was drawn to the idea of managed services and operational support. As I gained hands-on experience, my focus naturally shifted toward cybersecurity consulting and leadership, where I could address not just technical issues, but the underlying causes of risk.

Through roles in technical support, application security, and access governance, I consistently worked at the intersection of technology, clarity, and business alignment. Supporting enterprise applications, performing access reviews, and collaborating with system owners and managers revealed a recurring pattern across organizations: cybersecurity challenges were rarely caused by a lack of tools—they were caused by a lack of visibility, ownership, and governance.

I saw firsthand how unclear access rights, undocumented permissions, and misunderstood systems introduced unnecessary risk. More importantly, I observed how these issues persisted not because teams lacked effort or skill, but because leadership lacked a clear, structured view of their technology environments and associated risks.

Those experiences shaped my professional focus. Today, my work centers on helping organizations understand their technology environments, define risk ownership and accountability, and govern access and data responsibly—in ways that support, rather than disrupt, business operations.

By bringing governance, risk awareness, and leadership alignment into the conversation, I help organizations move from reactive security challenges to intentional, well-managed risk programs that enable confidence, resilience, and informed decision-making.

 

 

 

 

How I Work

My approach is rooted in risk leadership, clarity, and collaboration. I work effectively both independently and alongside executive teams, providing structured guidance while partnering closely with internal stakeholders and trusted providers.

I do not approach risk as a technical problem to be solved with tools or reactive responses. Instead, I focus on helping organizations understand, categorize, prioritize, and govern risk—so leaders can make informed, defensible decisions aligned with their mission and operating reality.

When working with clients, I act as a Risk Leadership Advisor, supporting executives and boards with governance, oversight, and decision support. I collaborate with internal IT teams, security staff, compliance functions, and external vendors as needed—not to replace them, but to ensure risk ownership, accountability, and coordination are clearly defined.

I lead with clarity and produce practical risk artifacts organizations rely on, such as risk registers, governance frameworks, decision models, accountability matrices, and executive-ready reporting. These artifacts create transparency, continuity, and structure—allowing risk management to function as a program, not a collection of ad-hoc activities.

I take time to listen and understand how each organization operates in practice. I meet leadership where they are, then help build scalable, well-governed risk practices that evolve with growth, regulatory expectations, and changing technology environments.

At every step, I prioritize:

  • Plain-language risk communication leaders can understand and act on

  • Proactive, structured risk management over reactive response

  • Thoughtful governance and decision-making

  • Sustainable risk practices over quick fixes

My goal is to help organizations move from uncertainty to confidence, so risk management becomes a strategic leadership function—not a source of confusion or constant concern.

Professional Experience 

 

Network & Cybersecurity Consultant

 

 

Afronomias Cyber Services

 

    • Conduct third-party and vendor risk assessments, documenting inherent risk, control gaps, residual risk, and remediation need to support informed risk decisions.
    • Develop cybersecurity artifacts including risk registers, vendor registers, security roadmaps, and executive summaries.
    • Evaluate organizational security posture and identify priority risks across operational, financial, and cybersecurity domains.

     


 

 

 

Application Security Lead / Application Support Specialist

 

 

Custom Truck One Source 

 

  • Led enterprise user onboarding and offboarding processes across multiple applications and systems
  • Performed standard user access reviews to enforce least-privilege access and support audit readiness
  • Supported ERP and business-critical applications, including Infor M3 and Salesforce
  • Authored access review matrices, and governance documentation to support security and compliance controls
  • Collaborated with system owners, managers, and IT teams to resolve access and security-related issues

 

 

 

 

 

ERP Analyst / Data Analyst

 

 

DDP Medical Supply 

  • Supported Acumatica ERP with a focus on role-based access control and operational workflows
  • Configured user roles and permissions to align with least-privilege principles
  • Built reports and dashboards to improve data visibility and decision-making
  • Partnered with business stakeholders to improve reporting accuracy and process efficiency
  • Authored SOPs for internal usage

 

 

 

 

 

Compliance Analyst

 

 

ModivCare

 

  • Supported HIPAA and SOC 2 compliance efforts through access reviews and control validation
  • Investigated access discrepancies and collaborated with IT teams on remediation
  • Assisted with compliance documentation and audit preparation activities

 

Education & Credentials

Formal education and industry-aligned credentials supporting a practical, security-first consulting approach.

Formal Education

Bachelor of Science in Information Systems — Completed 2024

University of West Florida

I completed my Bachelor of Science in Information Systems in 2024, where I developed a strong foundation in networking, hardware and software systems, systems analysis, and secure systems design. My studies emphasized how technology supports business operations, with hands-on exposure to network infrastructure, system architecture, and information flow across organizations. Building on this foundation, I am currently pursuing a Master of Science in Cybersecurity, with an expected completion date of August 2026. My graduate studies focus on network and system security, core cybersecurity principles, risk management, database systems with an emphasis on data relationships and integrity, artificial intelligence concepts, and upcoming coursework in auditing and compliance. This academic path supports a practical, security-first consulting approach that bridges technical controls, risk awareness, and business needs.

Certifications & Badges

  • ISC2 – Certified in Cybersecurity - Passed Exam(CC)

  • CompTIA Security+  (SY0-701), 2026

  • Cisco Networking Academy – Introduction to Cybersecurity (Digital Badge)

  •  Cisco Networking Academy – Networking Basics (Digital Badge)

Professional Training & Coursework

 • Coursera – Cybersecurity Architecture (IBM)

• Coursera – Securing Systems and Networks
• Coursera – Security Fundamentals and Identity Management

Cisco Networking Academy – Networking Basics
Certificate of Completion

Completed foundational networking training covering IP addressing (IPv4/IPv6), routing and switching concepts, VLAN segmentation, DHCP, DNS, and basic network troubleshooting.

If you’re exploring how to better understand, prioritize, or govern risk within your organization, I invite you to schedule a discovery conversation.