Security Manager

AISHAT OYEWOLE

M.EBT, B.sc, MTA, Network+, Security+

**** **** ***** *****, *** 3N9, Ottawa 613-***-**** *************@*****.*** LinkedIn: https://www.linkedin.com/in/aishat-oyewole-265008123/ PROFILE

• Working knowledge of Privacy Laws and Regulations such as GDPR, HIPAA, and SOX

• Knowledge of Incident Response Lifecycle

• Experienced with creating rules, active channels, filters and active lists in ArcSight AREAS OF EXPERTISE

• Risk Assessment

• Risk Management

• Security Operations

• Security Information Event Management (SIEM)

TECHNICAL SKILLS

WAF: F5

Antivirus & Antimalware: Symantec, Trend Micro Office SIEM: ArcSight

Operating Systems: Windows server 2008/2012, Windows 7/8 Vulnerability assessment: Nessus

EDUCATION

University of Ottawa, Ottawa 2016 - 2017

M.EBT Electronic Business Technologies

University of Ilorin, Nigeria 2009 - 2013

B.Sc Computer Science

PROFESSIONAL CERTIFICATIONS & TRAINING

ISC (2) Systems Security Certified Practitioner (SSCP) – In progress CompTIA Security+

CompTIA Network +

Microsoft Technology Associate (Database fundamentals) EXPERIENCE

Belairdirect May 2018 – Present

Security Analyst – Security, Risk and Compliance June 2019 – Present

• Perform ongoing risk management and make recommendations to mitigate identified risks to an acceptable level.

• Work closely with Privacy and Legal teams to ensure privacy of customer data.

• Identify gaps in vendor security controls, evaluate the levels of risk based on the gap and make recommendations on how to close control gaps.

• Conduct and improve security awareness through simulated phishing campaigns and security awareness emails.

• Create and update IT risk register.

• Stay up to date on current threats and vulnerabilities and work with various teams to develop remediation plans

• Keep track of antivirus effectiveness, updates and renewals.

• Setup policies and scheduled scans in Nessus as part of vulnerability management Workforce Analyst [focus on data and Trend Analysis] May 2018 - June 2019

• Created tests scripts and execute user acceptance testing on the workforce management system.

• Assigned security profiles to call centre agents based on need to know.

• Maintained daily event log of any systemic or operational issues impacting performance

• Contributed to and participated in business continuity planning and verification

• Provided reports to management and communicate reasons for variance and recommendations to management for improved performance.

• Managed daily tracking report, review necessary changes, and report to leadership on trend and issues.

• Tracked and report monthly trends on business operations. Klipfolio Inc.

Data Security Analyst January 2017 – August 2017

• Assigned access and privileges to database using the principle of least privilege

• Classified and Labelled data based on sensitivity

• Administered network shares to files/folders by assigning user permissions in Microsoft Active Directory

• Implemented best back up practices and ensure backed up data is secure.

• Assess risk and efficiency of data processing systems.

• Reviewed change requests to determine the impact of changes and participated in CRB meetings Lower Niger River Basin Development Authority December 2014 – December 2015 IT Security Specialist (Security Operations Centre)

• Performed real-time monitoring, security incident handling, investigation, analysis, reporting and escalations of security events as part of the Security Operations Centre

• Resolved security incidents ensuring eradication, recovery and proper documentation

• Escalated threats and incidents to Digital Forensics and Incident Response (DFIR) as per defined procedure

• Created and maintained process and procedure documentation

• Generated use cases and rules for monitoring and threat detection in Arcsight.

• Performed remote scans in Symantec Endpoint Manager

Contact this candidate