Cyber Security Supply Chain
Resume:
ADENIRAN (NIRAN) SERIKI – GREEN CARD HOLDER
***********@**.*** • +1-945-***-**** • Denton, Texas.
EXECUTIVE SUMMARY
Experienced Cyber Security Director with over 30 years extensive international, technical, and management experience. Led numerous cybersecurity projects across various sectors, including Utility, Aviation, Finance & Banking, Defense, Life Sciences, Public, and Private sectors, aimed at reducing business, operational, and cyber risks. Expert in Cyber Security Assessment, conducting security maturity assessments, Cloud security assessment, NIST 800-53 Implementation, NIST-CSF, ISO27001, PCI-DSS assessments, and Supply Chain Security. Successfully designed and implemented security assessments and audits for Vendors and Third Parties.
SKILLS
Governance, Risk, Compliance (GRC) • ISO27001 • NIST • GDPR • GxP • GMP • PCI-DSS • NCSC • COBIT
DORA Enterprise Security Architecture, TOGAF, SABSA & OSA Architectural Frameworks
Governance, Risk, Compliance (GRC) - International Standards and Regulations: ISO27001, NIST, GDPR, GxP, GMP, PCI-DSS, NCSC, COBIT, EU NIS 2.0 directive
Supply Chain Security Expert/ Vendor & Third-Party Risk Management (TPRM)
Cloud security assessments (AWS, Azure & Google Cloud)
Engagement with Senior Stakeholders across organizations
Excellent & articulate Business Communication and passion for excellence.
TECHNICAL EXPERTISE & EXPERIENCE
Security Incident & Events Management (SIEM) tools like Splunk, IBM QRAdar, Tenable, ServiceNow, MS Sentinel, Qualys, Defender Azure & M365 security
Tools: Zscaler, Microsoft Defender, Sentinel, BeyondTrust, Azure native security, CrowdStrike, AWS, Azure DevOps, IDS/IPS, Firewalls, and antivirus software. Penetration testing
Hands on technical background with experience in setting up Security Operations Centre (SOC) & Cyber Security Incident Response Team (CSIRT
Network Security, SDLC, Devops, CI/CD Pipeline, Technical design, Software development lifecycle, Mainframe.
WORK HISTORY
Aug 2018 – Present Capgemini Senior Security Manager
Supervised SOC Management, Incident management, and CSIRT, monitoring ServiceNow, reducing incident resolution time by 85%.
Managed supplier security risk assessments and stakeholder expectations, enhancing security posture.
Led teams in SOC, SIEM, Pen Testing, Vulnerability Management, and Business Continuity, producing regular security reports and engaging with senior stakeholders.
Capgemini, Managing Cyber Security Consultant
Some successfully delivered security projects include:
Cyber Security Awareness Programme for management and technical staff.
Cyber Security Remediation Programme,
NIST Implementation project
Supply Chain Security Implementation
GRC Compliance based on ISO27001:2013; ISO27001:2022, NIST and CIS Controls
NIST Gap Analysis project
Vulnerability Management project
The Digital Operational Resilience Act (DORA) EU
Capgemini, Lead Security Architect
Review and approval of both Low-level design (LLD) and High-level design (HLD) for projects.
Managed security architecture deliverables including technical reviews, security impact assessment of project designs before going live.
Security architecture tasks related to Identity & Access Management (IAM) assessment, Privileged Access Management (PAM) and product recommendation to business stakeholders.
Review of cyber threat assessment reports, vulnerability and remediation reports, Pen Testing reports with a view to providing necessary approvals for projects.
Capgemini, NIST SME
Cyber security assessment for different clients on NIST 800-53, NIST CSF, ISO 27001 and other control frameworks. Evaluating the effectiveness and maturity of the organization's cybersecurity program, including policies, processes, and technologies.
Assessing the alignment of cybersecurity initiatives with industry standards, frameworks (such as NIST, ISO 27001, CIS), and regulatory requirements.
Identifying strengths, weaknesses, and areas for improvement within the cybersecurity program. Managing the gap analysis and working through with stakeholders on remediation strategies.
Sep 2017 - Aug 2018 Wipro Limited, Security Programme Director/Account Delivery Head
Led the successful delivery of a cybersecurity program, developing security policies and standards, and implementing an ISO 27001 framework for a travel and aviation client, improving security posture by 85%.
Enhanced security framework, reducing incident response time by 90% through comprehensive policy development and risk management strategies.
Coordinated with key stakeholders to ensure alignment with security standards, achieving ISO 27001 certification.
Dec 2011 - Sep 2017 Shekinah Information Security Consultancy, Security Director/CISO
Project - Genmab (Biotech/Life Sciences/Healthcare) Supply Chain Security Consultant
Led the design and implementation of Supply Chain Security, enhancing vendor security assessments and audits, improving security posture by 75%.
Coordinated progress with key stakeholders, vendors, and clients, ensuring alignment with security standards and reducing incident response time by 85%.
Formulated an incident management framework to efficiently detect, protect, respond, and recover from cybersecurity issues, increasing incident resolution efficiency by 85%.
Mar 2012 - Sep 2017 European Council Senior Security Consultant (External Consultant)
As Senior Enterprise Cyber Security Advisor to the Management (Directors) on key Enterprise Security Strategies, Security Policy, Cyber Threats and Programmes, recommendations made helped the organization improve its security posture.
Nov 2011 - Mar 2012 Lloyds Banking Group Security Consultant
Project Leader for Vulnerability Assessment & Management and successfully implemented IT Security Standard Controls and Risk Assessment for the Banking group.
ADDITIONAL EXPERIENCE
2006-2011 - IT Carezone Security Lead/IT PM London Borough of Hounslow, London, UK.
2003-2006 - Director of IT Consultancy Shekinah Ventures Ltd, London, UK.
1993-2003 - Chief Executive Officer Shekinah Computers Ltd, Nigeria/London, UK.
1992-1993 - Operations Manager Amlyn Valencia, California, USA.
1989-1992 - General Manager Star Systems Ltd.
EDUCATION
Obafemi Awolowo University
Bachelor of Science • September 1983 – July 1987
Royal Holloway University of London
Master • Information Security • September 2009 – September 2011
CERTIFICATIONS
Certified Chief Information Security Officer (C CISO) - EC Council – Issued Sep 2013 - Current
Certified Information Systems Manager (CISM) - Issued Mar 2014 - Current
ISO 27001 Lead Auditor – SGS - Issued July 2009 - Current
ITIL V3 - Issued July 2009 - Current
EU-GDPR – IBITGQ - Issued Sep 2018 - Current
Prince 2 - Issued July 2009 - Current
PROFESSIONAL DEVELOPMENT
Certified Information Systems Security Professional (CISSP), Cloud Security Professional (CCSP), Cloud Security Knowledge(CCSK)- Cloud Security Alliance (CSA), Microsoft Azure Trainings, AWS Certified Trainings, Cloud Security, SANS SEC 566 – Implementing and Auditing the 20 Critical Security Controls, SANS SEC 504 - Hacker Techniques, Exploits & Incident Handling, Guidance EnCase Forensics Course 1, Digital Forensics (NATO Cooperative Cyber Defense Centre of Excellence, Estonia), Cyber Defense Monitoring Solutions, Security Events Management, Hacking & Intrusion Detection, Opposing Force Edition (HEXID OPFOR) Belgacom-JCA, Splunk Enterprise & IBM Security QRADAR, ITIL Practitioner.
HONORS & AWARDS
Cyber Security Publications on News/Threat Intelligence & Vulnerability Alert
Speaker - DRMFS Summit 2017, London Stock Exchange
Speaker - Third Party/Supply Chain Cyber Security Summit 2017
Speaker - Enterprise Security & Risk Management Europe, Amsterdam 2016
Speaker - Data Risk Management in Financial Services Summit 2015
Global C CISO of the Year 2016 Finalist Award Winner
Innovative Security Project of the Year 2016 Finalist Winner
Contact this candidate