Risk Management Assessments

Cybersecurity and IT Governance Professional

PROFILE SNAPSHOT

Seasoned IT GRC and Audit professional with over 8+ years of experience in consulting, controls testing, compliance enforcement, and risk management. Proficient in managing GRC projects, conducting risk assessments, compliance audits, and aligning organizational security postures with frameworks such as SOC, IT SOX, NIST CSF, CMMC, CSA CCM, PCI DSS, and HITRUST. Expert in security control testing, vulnerability assessments, and implementing controls aligned with NIST, ISO/IEC 27001, and CIS standards. Skilled in policy and standards development, gap analysis, and ensuring compliance with industry frameworks. Proven ability to collaborate with cross-functional teams, remediate vulnerabilities, and provide actionable recommendations to enhance security. As a certified IT Audit Specialist and Cybersecurity Manager, I focus on GRC, access management, and regulatory adherence. Dedicated to operational excellence, I strengthen security frameworks and improve compliance with PCI DSS, ISO 27001, and NIST implementations. Core Executive Competencies

Cybersecurity IT Compliance IT Governance IT Audit IT Risk Management GRC implementations Control implementations Business process risk assessments Technical Skills

Governance, Risk, and Compliance Technical Proficiencies Regulatory Compliance Audits, Risk Assessments, and Mitigation Risk Frameworks: NIST 800-37, COSO, ISO/IEC 31004, COBIT ITIL, ISO 27001/2, CIS Controls, NIST 800-53, FIPS, FISMA Policy Development, Change and Configuration Management, Business Continuity Planning

Incident Response and Security Maintenance

Linux Command Line, SQL, and Python

Threat Identification, Modeling, and Vulnerability Assessment

Intrusion Detection Systems, Network Security, and System Security

Tools: ForeScout, Cisco ISE, IBM QRadar, FireEye,

Nessus, Metasploit, Burp Suite, Splunk, and more

EDUCATION & PROFESSIONAL QUALIFICATION

Bachelor of Sciences in Financial Studies (Insurance), The Polytechnic Ibadan, Nigeria.

Bachelor of Science in Information System, Strayer University, Houston, TX

Certified Information Systems Auditor (CISA)

Comptia Security + Certified

Google Cyber Security Professional Certificate

Complete IT Consultancy Training and Solutions Boot Camp

CyberOpps Associate

PCI Professional (PCIP)

SIGNATURE ACHIEVEMENTS

Cross-Functional Risk Assessments: Spearhead risk assessments across diverse functions, recommending vulnerability patches for Active Directory and updating at-risk software, bolstering IT infrastructure against cyber threats.

Cybersecurity Policy Framework: Revamp the cybersecurity policy framework to align with NIST 800-171, NIST CSF 2.0, and ISO 27001, driving a 31% improvement in compliance rates and reducing policy-related incidents by 17%.

Training Program Design: Develop and execute an organization-wide training program on updated cybersecurity policies and best practices, achieving 95% adoption within three months and elevating adherence to security standards.

Revenue Assurance: Lead a team of IT Auditors and Control professionals in implementing the ACL Audit Exchange for revenue assurance, recouping millions in lost income and mitigating future revenue leakages.

Forensic Audit: Uncover a decade-long fraud in a subsidiary through a detailed forensic audit, leading to enhanced financial accountability.

Certification Preparation: Streamline ISO 27001 and PCI DSS audit readiness with comprehensive mock audits, cutting certification time and costs by 50%.

Olufemi Olajide Adekile

***********@*****.*** +347-***-**** Pear4470 Eveslage Lane, Conroe, TX. 77304 WORK EXPERIENCE

IT GRC Analyst

Kanshe InfoTech, USA

2021 - till date

Developed and executed an Information Technology compliance program. Conducted risk assessments for existing and new IT infrastructures, initiatives, and projects. Responsible for IT control analysis and process improvements. Conducted periodic evaluations and reported on IT performance and compliance status. Ensured compliance with policies, standards, procedures, and regulations. Ensured IT policies and procedures were well-documented and up to date. Conducted and facilitated control self-assessments, and performed gap assessments and audits. Implemented and maintained the Information Security Management System (ISMS) in accordance with ISO 27002. Championed security awareness training initiatives. Engaged in third-party risk assessments and vendor relationship management. IT Governance Analyst

Kanshe InfoTech, USA

2020 to 2021

Developed and maintained IT governance frameworks, policies, and procedures to ensure alignment with organizational objectives and industry standards.

Monitored compliance with regulatory requirements and internal controls, identifying and addressing any governance gaps. Conducted regular assessments to evaluate IT processes and ensured adherence to best practices, such as COBIT and ITIL. Facilitated risk management by analyzing IT risks and recommending strategies for mitigation and improvement. Collaborated with cross-functional teams to implement governance initiatives and enhance IT operational efficiency. Prepared and presented governance reports to senior management, providing insights into compliance status and improvement areas.

Third-Party Risk Analyst

Kanshe InfoTech, USA

2018 to 2019

Assessed and evaluated third-party vendors' security practices, ensuring compliance with organizational standards and regulatory requirements.

Conducted risk assessments on vendors, identifying potential vulnerabilities and recommending mitigation strategies. Reviewed third-party contracts and service-level agreements (SLAs) to ensure alignment with risk management policies. Monitored vendor performance and conducted regular audits to verify adherence to security and compliance requirements. Collaborated with stakeholders to address identified risks, ensuring timely resolution and maintaining business continuity. IT Auditor

CompleteIT Consulting

2015 to 2017

Supervised IT Audits: Supervised IT General Controls (ITGC) and Application Controls (ITAC) audits over applications, databases, and Enterprise Resource Planning applications for compliance. Internal Controls Compliance: Performed and supervised walkthroughs and tests of IT internal controls to ensure compliance with Sarbanes-Oxley (SOX) regulations, using COSO mapped to COBIT frameworks. Audit Planning and Oversight: Planned and oversaw the auditing process and reviewed team members’ work for accuracy and compliance.

Relationship Management: Managed ongoing relationships with external auditors, business units, and senior management. Follow-Up and Reporting: Followed up on the progress being made to address unresolved control matters, evaluated corrective measures taken, and prepared summary reports for executive management to ensure appropriate actions were taken in a timely manner.

Audit Strategy Development: In conjunction with other Audit Services leadership, developed the audit strategy and plan, with an emphasis on assurance and advisory services.

Consultation and Collaboration: Advised and collaborated with leadership on effective IT and Cyber Security controls and the regulatory environment

Olufemi Olajide Adekile

Signature

SOFT SKILLS

Goal Oriented Customer Service Quality Assurance Strong Ethics Team Management/Collaboration/Conflict Resolution Effective Communication Analytic Skills/ Critical Thinking Coaching/Mentoring Attention to Detail Time Management Effective Report Writing/Presentation Continuous Learning/Adaptability Innovation Interpersonal Relationship Leadership Management Issue Management Automation Technical Documentation PROFESSIONAL ASSOCIATIONS/AFFILIATIONS

ISACA (Information Systems Audit and Control Association) CompTIA (Computing Technology Industry Association)

(ISC) (International Information System Security Certification Consortium) LANGUAGE PROFICIENCY

English

Professional Proficiency

Contact this candidate