Post Job Free
Sign in

Security Officer Specialist

Location:
Regina, SK, Canada
Posted:
March 06, 2023

Contact this candidate

Resume:

Olayemi Agbeleye Page * of *

OLAYEMI AGBELEYE

https://www.linkedin.com/in/olayemi-agbeleye-cissp-cism-fsca-itil-90707079/ Tel: +1-306-***-****. ****************@*****.*** Address: 2904 Trombley Street, Regina, SK S4V 3Y5 Risk and Cybersecurity professional with +11years experience in a top tier ISO 270001 certified bank, Fintech and the Nigeria capital market. Experienced in leading Information security teams to deliver business objectives and achieve organizational compliance to industry and regulatory standards and frameworks. Looking to leverage information security leadership experience as a Chief Information Security Officer. Core Competencies/Technical Skills

● Network & system

security

● Firewall Security Review ● Third Party Risk Assessment

● Regulatory Compliance

● ISO 27001 Implementer

● WAF (Imperva)

● Vulnerability assessment

● DAM Solution (Imperva

&Guardium)

● Security Application Testing

● SIEM (IBM QRadar & Alien Vault)

● Network Access Control Solution

(ForeScout)

WORK EXPERIENCE

Ag. Chief Information Security Officer October 2019 till date

Central Securities Clearing Systems

• Ensuring third party security risks are properly assessed and appropriate remediation is put in place for remediation.

• transformed the patch deployment process thereby increasing patch compliance levels to about 90% every month.

• Redesigned the Network Security architecture and spearheaded the deployment of Forescout Network Access Control to reduce unauthorized access to the network.

Forescout NAC deployment Project

Enforced Network Segmentation

Activation of the WAF module on the firewall

• Ensuring deployed solutions are optimized for enterprise maximum ROI is achieved.

• Antivirus and patch management to ensure organizational security.

• performing information security design assessments & gap analysis.

• designing and implementing defense-in-depth information security controls and concepts for critical application and data environments.

• Firewall security review and IDS/IPS optimization.

• Deployment/monitoring and optimization of DLP solution.

• Enhanced the Email Security architecture to respond to the ever-changing email attacks.

• Enforced security best practices among administrations (Principle of least privileged, Segregation of duty, etc)

• Coached systems/network/database on best practices Olayemi Agbeleye Page 2 of 3

• Advised top management about new information security strategies.

• Worked in collaboration with Deloitte to successfully move the organization from maturity level 3 to 4.

• Achieve ISO 27001 certification/recertification for three consecutive years with a maximum of two minor non-conformities.

• Managed the deployment and optimization of multiple security solutions including TrendMicro XDR, TrendMicro hosted email security and cloud app.

• Coordinate all Information Security initiatives eg SOC implementation, VAPT engagement etc.

• Successfully realign the cybersecurity setup within the organization to align best practice.

• Coordinate quarterly security awareness training and phishing simulation for all staff. Information Security Engineer January-October 2019 Interswitch Group Limited

• Optimized the efficiency of all deployed security tools including ForeScout network access control solution, Imperva Waf, Imperva DAM, SIEM etc.

• designing and implementing defense-in-depth information security controls and concepts for critical application and data environments.

• performing information security design assessments & gap analysis.

• Ensured 95% antivirus compliance was archived within the organization.

• Increased patch management compliance from 85% to 93% monthly.

• Improved the network security by activating the IPS component of Fortigate as opposed to the IDS being used within the organization to prevent known attack signatures.

• Maintenance of ISO Integrated Management System certification (ISO 270001,223001 and 20000)

• Performs deep-dive incident analysis by correlating data from various sources; determines if a critical system or data set has been impacted; advises on remediation; provides support for new analytic methods for detecting threats. Operating systems and Databases risk assessment

• Reviews asset discovery and vulnerability assessment data. Explores ways to identify stealthy threats that may have found their way inside your network, without your detection, using the latest threat intelligence.

• Maintenance and configuration of firewall monitoring solutions.

• Conducts penetration tests on production systems to validate resiliency and identify areas of weakness to fix.

• Provide support to business units in the investigation and remediation of information security incidents and other policy violations using IBM QRadar and McAfee SEIM, Imperva DAM, Imperva WAF, Palo Alto NGFW, ForeScout, TrendMicro Cloud Protection and TrendMicro Hosted Email Security, Trend Micro Deep Security and HP Fortify code Analyzer.

• Collaborated with risk assessment team to develop effective controls targeted at identified risks. Information Security Officer, ISMS Monitoring and Incident Management Aug 2011 – Jan 2019 Guaranty Trust Bank Plc, Lagos

• Maintenance of ISO Integrated Management System certification (ISO 270001,223001 and 20000) Olayemi Agbeleye Page 3 of 3

• Maintenance and Testing of PCIDSS Controls

• Maintenance and configuration of firewall monitoring solutions.

• Successfully detected and re-mediated systems infected with ransomware using Palo Alto NGFW.

• Provided support to business units in the investigation and remediation of information security incidents and other policy violations using QRadar SEIM, Imperva DAM, Imperva WAF, Palo Alto NGFW, ForeScout, TrendMicro Cloud Protection and TrendMicro Hosted Email Security.

• Achieved 30% reduction in compromised credentials by carrying out intensive Information security awareness training and reporting violations to management.

• Collaborated with risk assessment team to develop effective controls targeted at identified risks. Key Projects and achievements.

• Upgrade and deployment of IBM QRadar SIEM from an all-in-one appliance to a distributed setup.

• Upgrade and DR deployment of ForeScout NAC solution.

• Development of the Bank’s Incident Management framework.

• Prevention of the spread of TeslaCrypt ransomeware on the network.

• Deployment of Imperva Incapsula anti DDOS solution.

• Deployment of TrendMicro Cloud APP solution.

• Creation of Policies on all Security Tools.

• Deployment of TrendMicro XDR solution.

EDUCATION

PGD, Technology Management 2022

National Center for Technology Management

B.Sc. Computer Science 2009

Olabisi Onabanjo University

CERTIFICATIONS

Certified Information System Security Professional

(CISSP)

Certified Information Security Manager (CISM)

ITIL

PECB ISO/IEC 27035 Senior Lead Incident Manager PECB ISO/IEC 27032 Senior Lead Cybersecurity Manager ICSI CNSS Certified Network Security Specialist

BSI ISO 27001 Lead implementer.

ForeScout Certified Administrator



Contact this candidate