Information Security Risk Management

Abimbola Emiola

Newark, New Jersey, ***** 785-***-**** adx436@r.postjobfree.com LinkedIn

PROFESSIONAL SUMMARY

A Risk focused Cybersecurity professional with a deep interest in providing technology defense, incident response, and data loss prevention. Experienced candidate who possesses a strong technical and security background with strong understanding of Operating Systems & Networks; mainly identifying, managing, and reducing vulnerabilities impacting the infrastructure. Capable of drafting, maintaining, and executing operating procedures to meet incident response. Passionate about solving data security and authorization problem. Consistently implements strategies for growth amongst team members to uphold confidentiality, integrity, and high availability of Network operations

Technical Skills

Operating Systems: macOS, Linux, Windows 7/8/8.1/10, iOS

Software: Microsoft Office 365, Finacle10, CarbonBlack, Crowdstrike falcon, Firewall, FileZilla, Cisco Packet tracer, VMware, Varonis, Fireeye, CyberArk., AMP, Wireshark, Splunk, Metasploit, Active Directory.

Hardware: Workstations, Laptops, Printers, Scanners, Projectors and Mobile Devices.

Areas of expertise

Disaster Recovery

Data Loss Prevention

Incident Response

Security Information and Event management

Vulnerability Management

Threat Analysis

Intrusion Detection System

Intrusion Prevention System

Certification

CompTIA CYSA+ Certification- August 2022’

Professional Experience

JOHNSON & JOHNSON (Contract)

Information Security Risk Management (ISRM) analyst, Nov 2022 – Feb 2023

Sustained and improved the enterprise information security risk management framework, policy, processes, and tools by aiding R&D security related activities (Risk assessments, threat modelling, user documentation and reports, compliance analysis, requirement gathering, HIPAA assessments and external audit.), while also contributing to post-market support activities (Vulnerability management, security advisories, customer support).

Develop and implement risk management processes (Process-level, asset level etc.) including embedding risk assessments into existing capabilities (architecture review, data flow, security design and development etc.) and risk acceptance.

Manage and track medical device installation progress and working with stakeholders to produce ISRM status report: obtaining and collating information around information security risks, regularly document corrective actions, track remediation and report progress.

Manage information technology controls monitoring activities such as insider threat analysis, threat modelling for medical devices, medical device cybersecurity requirements etc.

CAVADIUM CONCEPTS, MARYLAND

Cybersecurity analyst, Jan 2018 – Oct 2022

Coordinate comprehensive incident response to security incident, incident prevention, incident detection and containment; providing documentation and presenting technical report to business audience and developing plans, procedures, guidelines, policies and reporting for process development, disaster recovery and business continuity thus resulted in a 30% decrease of response time to all assigned phishing/malware analysis, incident remediation/DLP analysis.

Monitor network traffic, antivirus software and also analyzing logs to identify and investigate security breaches, anomalies, virus infections while also expanding network visibility and security automation with new tools and software including Firewalls, Intrusion Detection System (IDS), Intrusion Prevention System (IPS), VPN, Encryption, Decryption technologies, thereby providing endpoint security through actively monitoring security and Event Management (SIEM) logs for threat detection, monitoring, response, forensic activities and for identification of possible intrusion.

Monitored and evaluate the effectiveness of IT Risk management, security controls and alignment with security frameworks such as NIST, ISO 27001, ISO 22301, HIPAA, Sarbanes Oxley, GDPR, CIS, CSF, PCI DSS for a 100% completion of audit readiness (internal and external audit).

UNITED BANK FOR AFRICA, LAGOS

Client Information Manager, Jan 2013 – Jan 2018

Led the small business group to refocus on strategies to improve import/export business while ensuring data privacy, increased information security and adherence to regulatory standards.

Collaborated with the technology team to develop a robust e-banking solution to FX customers thereby creating a 20% increase in FX profitability in Q1 and Q2 2018

Rendition of timely regulatory reports including Suspicious transaction report (STR), CTR, KYC in accordance with the organization's policies and procedures while ensuring compliance with anti-money laundry (AML), EFCC and BSA regulations.

Education

PER SCHOLAS, Newark, NJ

Certificate in Cyber-security 2022.

UNIVERSITY OF LAGOS, Lagos, Nigeria

Master of Public Administration. Feb 2016

Contact this candidate