*References available on request
OLATUNJI, OLULEKE DAVID
* ******* ******, *** ********* Estate, Gbagada Lagos
●+234 703******* adaddz@r.postjobfree.com skype: oluleke.olatunji Risk and Fraud management professional with +9years experience in a top tier ISO 270001 certified bank. Experienced in incident detection, remediation and management. Looking to leverage Security monitoring, threat hunting and people management skill as a Cyber Security Manager. Core Competencies
● Network & system security ● Fraud investigation & audit ● Policy implementation
● Regulatory Compliance ● Cost Benefits Analysis ● Team & project leadership WORK EXPERIENCE
The Nigeria Stock Exchange, Lagos Oct. 2018 till Date Information Security Governance Officer, Enterprise Risk Management
Ensure compliance of the Exchange's Information security programs are with applicable laws, regulations and policies to minimize or eliminate risk and audit findings.
Development of business-relevant metrics to measure the efficiency and effectiveness of the programs, facilitate appropriate resource allocation and enhance the maturity of the security and compliance program.
Identify and design appropriate security technologies based on risks, policies, and architecture.
Develop and manage the information security training program for employees within the Exchange.
Evaluate potential risks to The Exchange’s applications, network and operating systems and introduce countermeasures to address those risks.
Guaranty Trust Bank Plc, Lagos Sep. 2017 – Oct. 2018 Information Security Officer, IT and Cyber Risk Management
Web Application and API security testing using Nessus, Qualys, Burp Suite, and Kali Linux.
Mobile Application assessment using APPuse, Apktool, dex2jar and jd-Gui tools
Operating systems and Databases risk assessment and compliance monitoring
Maintenance of ISO Integrated Management System certification (ISO 270001,223001 and 20000)
Maintenance and Testing of PCIDSS Controls
Network vulnerabilities research
Maintenance and configuration of firewall monitoring solutions Guaranty Trust Bank Plc, Lagos Sep. 2014 – Sep. 2017 Information Security Officer, ISMS Monitoring and Incident Management
Created and maintained processes within the Unit to ensure compliance with ISO 270001 and ISO 27032 standards.
Successfully detected and re-mediated systems infected with ransom ware using Palo Alto NGFW.
Provided support to business units in the investigation and remediation of information security incidents and other policy violations using QRadar SEIM, Imperva DAM, Imperva WAF, Palo Alto NGFW, ForeScout and TrendMicro Cloud Protection.
Successfully deployed and maintained the bank’s various security solutions (Imperva, Palo Alto,QRadar, ForeScout) with minimal downtime and business disruption.
Achieved 30% reduction in compromised credentials by carrying out intensive Information security awareness training and reporting violations to management.
Collaborated with risk assessment team to develop effective controls targeted at identified risks.
Vulnerability assessment and application security testing using Nessus, Qualys, Burp Suite, and Kali Linux.
*References available on request
Guaranty Trust Bank Plc, Lagos Aug. 2012 – Sep. 2014 Electronic Fraud Investigator
Managed a team that reduced incidents and loses due to Internet Banking frauds by over 80%. This was achieved by reviewing previously successful frauds and creating controls around observed lapses.
Ensured constant satisfaction of customers (Internal and External) by consistently meeting our 24hour SLA for investigating and responding to customer complaints.
Created and maintained processes within the Unit to ensure compliance with PCIDSS standards.
Investigation of electronic fraud complaints across the bank’s various e-channels using Postilion and other e-channel management tools.
Managed indemnity requests from third parties including law enforcement and compiled reports for regulatory agencies.
Guaranty Trust Bank Plc, Lagos Dec. 2008 – Aug. 2012 Internal Control Officer
Reduction of losses to the bank from excess charge complaints by over 60%. This was achieved by reconciling charges to customers with details of their executed loan agreements.
Apprehended and interrogated over 25 different fraudsters for alleged financial crimes against the bank. Testified against a few currently behind bars.
Maintained a compliance level of over 90% for branches under supervision against a benchmark of 80%.
Cognitive Solutions Nig.Ltd. Ilupeju Lagos July – Nov. 2008 Web Developer
Design and Development of Web Portals using Python, PHP, MySql, JavaScript and HTML. EDUCATION
Ladoke Akintola University of Technology, B.Tech (Hons) Computer Science, 2006 Evaluated by World Education Services (WES), as equivalent to a four-year Canadian bachelor’s degree. Certifications
PECB ISO/IEC 31000 Lead Risk Manager
PECB ISO/IEC 27032 Lead Cybersecurity Manager
BSI ISO/IEC 27001 Lead Auditor
Cisco Certified Network Associate Cyber Ops (CCNA Cyber Ops) Certified Information Systems Auditor
IBM Security Intelligence Specialist
Other Training
Secure Application Development Training, October 2017 Metasploit (Cybrary.it), August 2017
Web Application Penetration Testing (Cybrary.it), July 2017 Developing Android Apps, May 2017
Palo Alto Network Security Engineer, October 2016
Imperva SecureSphere Web Application and Database Security and Compliance, October 2015 Advanced Vulnerability Assessment and Penetration Test, September 2011 Volunteer Activities
Volunteer Facilitator, Android Learning Community, Andela Nigeria in Partnership with Google
*References available on request