KEHINDE OLALEYE

Cyber Security Professional

+1-437-***-**** ad4ejs@r.postjobfree.com 274 Edgehill Drive Barrie Ontario

PROFESSIONAL SUMMARY

Experienced cybersecurity professional with 8+ years’ experience in protecting information networks and systems. specializing in SOC operations, threat detection, incident response, vulnerability management and digital forensics. and mitigating cyber risks. Proven track record of driving compliance (ISO 27001, GDPR, PCI DSS) Skilled in security tools and technologies, Efficient communicator and investigator, adapting quickly to dynamic IT environments. I take pride in my efficient work habits, promoting respectful and professional interactions with stakeholders and staying abreast of emerging cybersecurity trends and technologies.

HIGHLIGHTS

8+ years experience in Security Operation management and systems security across Financial Institutions.

Led the successful implementation of a new SIEM, EDR and PAM solution, resulting in improved visibility and threat detection.

Developed and implemented a SOC playbook, outlining standardized procedures for incident detection, triage, and response, leading to improved efficiency and consistency in incident handling

Understanding and application of IT Risk and Control Frameworks (COBIT, ISO 27001,NIST, PICDSS, and GDPR)

development and maintenance of security policies, protocols, and procedures, ensuring alignment with industry best practices and regulatory requirements, and enhancing overall security governance.

Excellent communication (spoken & written) and presentation skills demonstrated to senior management and other stakeholders.

Resourceful and results orientated individual with excellent interpersonal skills.

Possesses a positive approach to problem solving through advanced critical thinking.

Organized, detailed, focused and driven to meet given deadlines.

Deep understanding of TCP/IP, DNS,VPN, SSL, DHCP, encryption technologies and common networking services.

Proven ability to work independently and as part of a team.

SKILLS AND COMPETENCES

Security Information and Event Management (SIEM): RSA Security Analytics, Tripwire Log Centre & Enterprise, Rapid 7 IDR, Splunk, AlienVault, Microsoft Sentinel

Endpoint Detection and Response (EDR): CrowdStrike Falcon XDR, McAfee Endpoint Security Suite, Sentinel One Singularity, Carbon Black Defense, Cylance PROTECT

Identity and Access Management (IAM) & Privileged Access Manager (PAM) : Azure Active Directory (Azure AD), BeyondTrust Privilege Management, CyberArk.

Cloud Access Security Broker (CASB): McAfee Skyhigh Security, Cisco Cloudlock, Symantec CloudSOC,

Firewall [ IPS,NAC & IDP] : Cisco SecureX, ISE Palo Alto Networks NGIPS:, Check Point IPS, Snort, Fortinet FortiGuard IPS, Barracuda, Cisco Firepower

Vulnerability Assessment: Nexpose, Nessus, Qualys, Rapid 7 VM, Informal

Governance Risk Compliance Frameworks and Methodologies – ISO 27001, ISO 22301, COBIT, ITIL, COSO, PCIDSS.

Databases –Oracle, SQL, Jbase.

Excellent communication skills, and problem-solving skills, continuous improvement

PROFESSIONAL EXPERIENCE

Cyber Security Analyst Sept 2023 till date

Vistavine Solutions, AB

Conducted comprehensive security assessments and vulnerability scans, leading to the identification and remediation of critical security gaps, ensuring compliance with industry standards and regulations.

Developed and executed tailored cybersecurity training programs for employees, enhancing overall security awareness and reducing susceptibility to social engineering attacks by 60%.

Led cross-functional teams in conducting forensic investigations and root cause analysis of security breaches, resulting in the implementation of proactive measures to prevent future incidents.

Provided expert guidance to client stakeholders on cybersecurity best practices and emerging trends, fostering a culture of proactive risk management within their organizations.

Led rapid deployment of security controls and configurations for client networks, ensuring compliance with industry standards and regulatory requirements.

Senior Cyber Security Specialist Jan 2020 –Aug 2023.

Sterling Bank PLC

Improved the detection and response time to vulnerabilities on all devices across the network by 80% by deploying security solutions such as SIEM, Vulnerability scanner, EDR, etc.

Led a team of security analysts to conduct a comprehensive security assessment of the organization's IT security environment, which identified and remediated hundreds of vulnerabilities across all devices

Collaborate with IT operations teams to implement security controls to mitigate compliance gaps. This included implementing firewalls, intrusion detection systems, and other security controls to protect the organization's IT environment from attack.

Led an incident response team in daily management and resolution of incidents within approved SLAs.

Collaborate with Project and IT operations teams to implement a Privileged Access Management (PAM) solution, enhancing organizational cybersecurity by monitoring, detecting, and preventing unauthorized privileged access to critical resources.

Reduced the number of phishing attacks by 80 % by implementing anti-phishing solutions.

Continuously validate and update security documentation, assess security posture, implement recommended solutions

Participate in audits and assessments to ensure compliance with regulations and standards.

Provide high-level technical support, troubleshooting complex issues, and offering strategic recommendations for infrastructure improvements with high availability.

System Security Analyst Mar 2014 – Dec 2019

Sterling Bank PLC

Remediated high-severity vulnerabilities to prevent exploitation, collaborating with IT teams on patching and risk communication to senior management and customers.

Assisted with the alignment of the Bank’s Change Management policies (ISO 27001:2013 & ISO 20000)

Developed and implemented security policies and procedures to improve the security posture of the organization.

Developed and delivered a presentation to the organization's senior management team to raise awareness of the importance of cybersecurity, the latest cybersecurity threats and trends, and secure funding for new security initiatives.

Development and implemented a new information security risk assessment process aligned with industry trends best practices to identify, evaluate, prioritize, and implement appropriate mitigation controls.

Manage endpoint security and compliance reporting for business lines, overseeing endpoint and alerting tools for agent deployment, correlation, rule tuning, health, performance, stabilization, and ongoing infrastructure planning.

CERTIFICATIONS & TRAININGS

Certified Ethical Hacker

Microsoft Certified Azure Fundamentals - AZ-900

ISO 27017 and 27032 lead implementer

CompTIA CySA+

Cisco Certified Network Associate (CCNA)

ITIL V3 Foundation

Microsoft Certified: Security Operations Analyst Associate - SC-200

ISO 27001:2013 Lead Implementer

CISSP in view

EDUCATION

University Of Ilorin BSc Computer Science 2011

Contact this candidate