Information Security Cyber
Resume:
Resume – Johnson Tamakloe
PERSONAL DETAILS
Johnson Tamakloe
Certified Information Security Manager® (CISM)
Accredited Cybersecurity Professional (Cyber Security Authority, Ghana) ***************@*****.***
CAREER OBJECTIVE
To support organisational risk, tolerance, cybersecurity, and compliance requirements in ensuring that adequate and effective policies and processes are reviewed, assessed, measured, and implemented in achieving Business goals.
To become a Policy Compliance Manager, consulting with all internal (Fraud, Audit, Corporate Security, etc) and external agencies as needed to resolve complex cybersecurity, audit, compliance, and fraud issues. Coordinate and manage execution of business and customer compliance audits, inquiries and questionnaires around governance, risk, and control. It is of great importance to me to achieve the goal of becoming an operational manager and consultant providing technical knowledge and management skills needed to plan, acquire, operate, and evaluate technology systems and general administration of enterprise. Another vision is to lecture by imparting the acquired industrial experience and academics to upcoming students.
EDUCATION& QUALIFICATION
Certified Information Security Manager® (CISM)
Accredited Cybersecurity Professional (Cyber Security Authority, Ghana) Trained Anti Money Laudering Specialist(AML)
Trained CCSP (Cloud Security Professional)
Trained SEIM Specialist (IBM & Splunk)
Trained CISM & CISA
Trained ISO/IEC 27001 Lead Implementer
MBA – Sikkim Manipal University (SMU) India, Ghana Distance Learning Centre, Accra (2011- 13) -Main Area of Specialization: Operations Management Postgraduate Certificate- Ericsson Training Centre, Accra -Main Area of Specialization: Telecommunications (Ericsson 2006- 2008)
BSc (Hons) Certificate- University of Mines and Technology, (UMaT) Tarkwa (Formerly KNUST, School of Mines, Tarkwa 2001-2005) - Main Area of Specialization: Electrical Engineering
Professional Association/Membership
Member of ISACA International, USA
The Institute of ICT Professionals (IIPGh) Ghana,
International Security Forum (ISF), United Kingdom Associate Member, Association of Certified Fraud Examiners (ACFE), UK & GH WORK & PROFESSIONAL EXPERIENCE
Nov 2022- present
Information Security (IS) Manager & Business Risk and Compliance Officer Cross Switch Ghana Ltd (Payment Services Provider) Key responsibilities as Information Security (IS) Manager
The Information Security Manager is the primary role is reporting to the Information Security Steering Group on all security related matters on a regular and ad-hoc basis when required at the Board level.
Communicate the information security policy to all relevant interested parties where appropriate, including customers.
Implement the requirements of the information security management system (ISMS) policy.
Manage risks associated with cyber security and access to the service or systems.
Ensure that security controls are in place, functioning and documented.
Approve limited expenditure on information security-related matters.
Review, revise where necessary, and enforce implementation of ISO 27001 policies.
Developing and implementing comprehensive plans to secure information and information systems.
Analyzing, assessing, and auditing information usage to ensure compliance with recognized security frameworks.
Develop, plan, and implement security risk assessment.
Develop and implement a security risk treatment plan.
Lead implementation of security controls to safeguard the information based on recognized security standards.
Collaborating with management and the technical department to improve information security.
Develop and provide information security awareness training to executive management, senior management, and staff about best practices for information security.
Develop and implement business continuity management and disaster recovery plans with other departments.
Key responsibilities as Business Risk and Compliance Officer
Support and evaluate the compliance affairs of the Company, and support in mitigating the risks associated with the business.
Assist in the documenting the controls related to all relevant risks, compliance with laws and regulations.
Be a key point of contact locally for regulatory reporting and engagement.
Support and prepare reports for board of directors, senior management, and external regulatory bodies as often as necessary.
Create sound internal controls and monitor implementation and adherence to the controls.
Proactively audit processes, practices, and documents to identify compliance risks and propose controls to mitigate risks.
Develop a risk assessment framework for all Company products.
Evaluate merchant self-onboarding process to assess compliance risks and propose effective controls- KYC reviews.
Conduct a comprehensive due diligence exercise on new and existing merchants-KYC reviews.
Conduct staff training on regulations and industry practices, on an introductory and/or continuous basis to ensure solid understanding of related policies and procedures pertaining to the business.
Develop a comprehensive annual AML Training program and coordinate weekly training for all staff.
Address employee concerns or questions on legal compliance to stay abreast of internal standards and business goals.
Review the operation of controls within all business areas. December 2012 – Oct 2022
Vodafone Ghana Ltd
Cyber/Technology Security Compliance Specialist
Key responsibilities include.
Cyber Security Baseline/Controls & Policy Compliance Manager
Support of company risk tolerance and technology compliance requirements to ensure that adequate and effective processes are reviewed, assessed, measured, and installed across the Business.
Consults with the Internal Audit (IA) Department, Fraud Department and Corporate Security as needed to resolve complex audit, compliance fraud issues across the Business.
Develops action plans, Sox compliance, schedules, status reports and other senior management communications intended to track and improve the status of it/technology, including security vulnerabilities, risk-mitigating initiatives, policy compliance status and regulatory compliance status,
Performs and/or oversees the performance of periodic cyber security risk assessments that identify current and future internal and external security vulnerabilities as well as fraud related issues, provides necessary information to derive decisions about risk acceptance and risk mitigation, and identifies the best ways to reduce information security risks.
Main spoc for companywide user access management (UAM) and reviews
Security information and event management (SIEM) manager
Provide information security awareness training for new hires and vendors.
Key spoc for managing Cyber Security Governance, Risk & Compliance (GRC Operations)
Key spoc for managing mobile money GRC Operations and implementations.
Considerable knowledge about the operation of IPS/IDS, Splunk, WAF, Nexpose& UAM tools
Support Supplier Security programs
November 2010 – November 2012
Vodafone Ghana Ltd
Vendor Compliance Manager - Technology
Key responsibilities include.
Implement maintenance service processes and monitor compliance of Vendors against agreed key performance indicators (KPI).
Coordinate regular performance reviews with vendors, ensuring agreed maintenance support performance standards are met/exceeded.
Manage vendor performance tracking system and generation of regular support performance reports.
Establishing performance standards and monitoring compliance; completing regular performance reviews and ensuring that standards are met or exceeded.
Service level performance tracking and reporting. Ensure overall SLA services delivery and performance is communicated to internal stakeholders and business partners.
Participate in designing best-in-class standards, processes, and methodologies (scope,
quality, time, cost, risk, issues management, human resource, key performance indicators and communications) for effective vendor management.
Participate in review and renewal of SLAs.
December 2009 – October 2010
Vodafone Ghana Ltd
Problem Analyst - Service Management (NOC)
Key responsibilities include.
Analyses network problems (Data, BSS, and Core Network) and work with engineers focusing on the prioritisation and resolution for high network availability.
Creating problem cases and troubleshooting to get issues resolved permanently.
Communicates progress of network problems to relevant parties such as customers and management
Provide general monitoring support to NOC shift engineers of network nodes (Data, BSS,
NSS), reporting outages, solving of alarms to achieve 99.99% cell and site availability.
Generating BSS Network Site Availability Report and ensuring proactive measures aftermath to field engineering managers for problem arising resolutions from the report. June 2009– May 2012
Sikkim-Manipal University (SMU), Distance Education Centre, Ring Road Central, Kwame Nkrumah Circle, Accra
Part- Time Lecturer
Key responsibilities include.
Lecture MSc IT students in Broadband Communication, IT Law & Practice, Wireless Mobile Communication, Switching Transmission, Artificial Intelligence, Client Server Architecture, VOIP
Lecture BSc IT students in Logic Design and E-commerce October 2009 – November 2009
MTN Ghana Ltd
DCG (Data Configuration Group) Engineer
Key responsibilities include.
Execute change management request on MSS, MSC, HLR and MGw
Prepare data transcript for all core network services.
Subscriber subscriptions configuration on HLR
Route expansion configuration
October 2008 – March 2009
Millicom (Tigo) Ghana Ltd
Acting NOC Manager
Key responsibilities include.
Ensuring diligent monitoring of the network 24 x 7, by supervising NOC engineers, working with other technical managers to achieve 99.99% cell and site availability follow up on faults till they are resolved.
Plan, manage, co-ordinate, implement and see to the execution of all NOC projects and others that may be assigned by the CTO (Chief Technical Officer)
Prepare network availability report for engineering management and CTO periodically and see to the execution of all recommendations provided to improve the network.
Manage the NOC to ensure staff motivation, security, assist, and train NOC engineers, ensures that all SOX requirement (laid done procedures) are followed.
Provide oversight supervision of OMS and maintenance engineers in resolving of faults.
Manage the execution of change request (work orders) of projects Communicate and confirm with Site Managers and Contractors to confirm daily site progress update. August 2006 – September 2008
Millicom (Tigo)Ghana Ltd
NSS Engineer
Key responsibilities include.
Monitoring of network nodes (BSS, NSS), reporting outages, solving of alarms to achieve. 99.99% cell and site availability.
Performing backup (CP&AP Backups on Ericsson APG40) network nodes periodically.
Execution of change request (work orders) of projects
Network routes expansion and configuration.
Executing NOC projects
Guiding NOC Engineers in achieving daily KPI targets October 2005 – July 2006(National Service)
National Coordinator of Ghana National Association of Adventist Students (GNAAS) Key responsibilities include.
Worked as the National Coordinator at the SDA Education Unit of Ghana Education Service (GES), Accra in charge of Students Affairs.
Assist the SDA Clergy in Student Evangelism throughout the country.
Successfully with other officers of GNASS organized the 25th Anniversary & Annual Conference of GNAAS in 2006
Assisted in the Annual Evangelism Crusade of GNAAS at Inchaban, Takoradi in 2005 winning about 100 souls and established a church.
In conjunction with the Ghana Union of SDA Church, organized a career workshop for Students.
SPECIAL SKILLS
Governance, Risk & Compliance
Incident & Vulnerability Management
Computer Literate
Customer Service Management Skills
Research & Analytical Skills
Knowledge in DLP, WAF, IAM, IDS/IPS, SIEM operations
Operations & Project Management Skills
Cyber Security Risk Management Skills
Anti-Money Laundering (AML) Specialist
Teachings Skills
Project Management Skills
REFERENCES
Mr. Nii Armah Addy
Professional Lawyer & Member of Centre for Social Justice, Ghana Email: ********@*****.***
Telephone: 024*******
Audrey Mnisi Mireku
Banking Operations, Risk and Cyber Security Specialist Ghana Association of Bankers.
Telephone: 050*******/057*******
Email : ***********@*****.***
Contact this candidate