Sign in

Information Security, Risk Management, Web Application Security, DAST

Lagos Island, Lagos, Nigeria
70000 USD pa
September 17, 2019

Contact this candidate


*References available on request


* ******* ******, *** ********* Estate, Gbagada Lagos

●+234 703******* skype: oluleke.olatunji Risk and Fraud management professional with +9years experience in a top tier ISO 270001 certified bank. Experienced in incident detection, remediation and management. Looking to leverage Security monitoring, threat hunting and people management skill as a Cyber Security Manager. Core Competencies

● Network & system security ● Fraud investigation & audit ● Policy implementation

● Regulatory Compliance ● Cost Benefits Analysis ● Team & project leadership WORK EXPERIENCE

The Nigeria Stock Exchange, Lagos Oct. 2018 till Date Information Security Governance Officer, Enterprise Risk Management

Ensure compliance of the Exchange's Information security programs are with applicable laws, regulations and policies to minimize or eliminate risk and audit findings.

Development of business-relevant metrics to measure the efficiency and effectiveness of the programs, facilitate appropriate resource allocation and enhance the maturity of the security and compliance program.

Identify and design appropriate security technologies based on risks, policies, and architecture.

Develop and manage the information security training program for employees within the Exchange.

Evaluate potential risks to The Exchange’s applications, network and operating systems and introduce countermeasures to address those risks.

Guaranty Trust Bank Plc, Lagos Sep. 2017 – Oct. 2018 Information Security Officer, IT and Cyber Risk Management

Web Application and API security testing using Nessus, Qualys, Burp Suite, and Kali Linux.

Mobile Application assessment using APPuse, Apktool, dex2jar and jd-Gui tools

Operating systems and Databases risk assessment and compliance monitoring

Maintenance of ISO Integrated Management System certification (ISO 270001,223001 and 20000)

Maintenance and Testing of PCIDSS Controls

Network vulnerabilities research

Maintenance and configuration of firewall monitoring solutions Guaranty Trust Bank Plc, Lagos Sep. 2014 – Sep. 2017 Information Security Officer, ISMS Monitoring and Incident Management

Created and maintained processes within the Unit to ensure compliance with ISO 270001 and ISO 27032 standards.

Successfully detected and re-mediated systems infected with ransom ware using Palo Alto NGFW.

Provided support to business units in the investigation and remediation of information security incidents and other policy violations using QRadar SEIM, Imperva DAM, Imperva WAF, Palo Alto NGFW, ForeScout and TrendMicro Cloud Protection.

Successfully deployed and maintained the bank’s various security solutions (Imperva, Palo Alto,QRadar, ForeScout) with minimal downtime and business disruption.

Achieved 30% reduction in compromised credentials by carrying out intensive Information security awareness training and reporting violations to management.

Collaborated with risk assessment team to develop effective controls targeted at identified risks.

Vulnerability assessment and application security testing using Nessus, Qualys, Burp Suite, and Kali Linux.

*References available on request

Guaranty Trust Bank Plc, Lagos Aug. 2012 – Sep. 2014 Electronic Fraud Investigator

Managed a team that reduced incidents and loses due to Internet Banking frauds by over 80%. This was achieved by reviewing previously successful frauds and creating controls around observed lapses.

Ensured constant satisfaction of customers (Internal and External) by consistently meeting our 24hour SLA for investigating and responding to customer complaints.

Created and maintained processes within the Unit to ensure compliance with PCIDSS standards.

Investigation of electronic fraud complaints across the bank’s various e-channels using Postilion and other e-channel management tools.

Managed indemnity requests from third parties including law enforcement and compiled reports for regulatory agencies.

Guaranty Trust Bank Plc, Lagos Dec. 2008 – Aug. 2012 Internal Control Officer

Reduction of losses to the bank from excess charge complaints by over 60%. This was achieved by reconciling charges to customers with details of their executed loan agreements.

Apprehended and interrogated over 25 different fraudsters for alleged financial crimes against the bank. Testified against a few currently behind bars.

Maintained a compliance level of over 90% for branches under supervision against a benchmark of 80%.

Cognitive Solutions Nig.Ltd. Ilupeju Lagos July – Nov. 2008 Web Developer

Design and Development of Web Portals using Python, PHP, MySql, JavaScript and HTML. EDUCATION

Ladoke Akintola University of Technology, B.Tech (Hons) Computer Science, 2006 Evaluated by World Education Services (WES), as equivalent to a four-year Canadian bachelor’s degree. Certifications

PECB ISO/IEC 31000 Lead Risk Manager

PECB ISO/IEC 27032 Lead Cybersecurity Manager

BSI ISO/IEC 27001 Lead Auditor

Cisco Certified Network Associate Cyber Ops (CCNA Cyber Ops) Certified Information Systems Auditor

IBM Security Intelligence Specialist

Other Training

Secure Application Development Training, October 2017 Metasploit (, August 2017

Web Application Penetration Testing (, July 2017 Developing Android Apps, May 2017

Palo Alto Network Security Engineer, October 2016

Imperva SecureSphere Web Application and Database Security and Compliance, October 2015 Advanced Vulnerability Assessment and Penetration Test, September 2011 Volunteer Activities

Volunteer Facilitator, Android Learning Community, Andela Nigeria in Partnership with Google

*References available on request

Contact this candidate