Details
University Of Lagos, Nigeria (2010)
KPS Global Fort Worth, TX Dec 2022 – Present
Responsibilities:
• Collaborated on the development and implementation of a robust Governance, Risk, and Compliance (GRC) framework, resulting in improved risk identification and mitigation processes.
• Conducted thorough risk assessment to identify vulnerabilities and gaps in security controls, leading to a 20% decrease in potential cybersecurity threats.
• Collaborated with cross-functional teams to streamline compliance efforts with industry standards such as NIST, ISO, and GDPR, ensuring adherence to regulatory requirements.
• Implemented automated risk management tools to enhance efficiency and accuracy in risk assessment processes, resulting in a 30% reduction in manual effort.
• Developed corrective action plans for vulnerabilities identified, and work with SME to develop remediation plans.
• Provided monthly reporting to Upper Management in regards to environment cyber posture.
IT Vendor Risk Management Analyst
Ulta Beauty, Dallas, TX Oct 2021- Dec 2022
Responsibilities:
• Managed vendor risk assessments and due diligence activities to evaluate the security posture of third-party vendors, ensuring alignment with organization risk tolerance.
• Developed and maintained vendor management policies and procedures to ensure consistency and effectiveness in risk evaluation processes.
• Conducted regular vendor security assessments and audits, identifying, and addressing security gaps to mitigate potential risk to the organization.
• Collaborated with procurement and legal teams to negotiate and enforce contractual agreements that address cybersecurity requirements and ensure compliance with industry regulations.
• Assessed inherent risk on vendors during Relationship review to ensure proper tier vendors.
• Conducted Security Assessment of all engaged Vendors by sending SIGs questionnaires to third parties with security documentation request.
• Reviewed information security requirements for both new and existing contractual agreements with outside parties.
Skills
• Proficient in risk assessment methodologies and frameworks (e.g., FAIR, OCTAVE, etc.).
• Strong understanding of regulatory requirements and industry standards (e.g., NIST, ISO, GDPR, etc.).
• Excellent analytical and problem-solving skills with the ability to communicate complex technical concepts effectively.
• Ability to understand and integrate cultural differences and motives, and to work with cross-cultural teams.
• Knowledge of security policies and principles of information handling and protection.
• Ability to work well with others to facilitate and enhance understanding and compliance with security.
• Good judgment, tact, and decision-making ability.
About
Dedicated and results-oriented Cybersecurity Risk Analyst with 3 years of comprehensive experience in Governance, Risk, and Compliance (GRC) analysis, as well as IT Vendor Risk Management. Adept at identifying, assessing, and mitigating cybersecurity risks to safeguard organizational assets. Proven track record of implementing effective risk management strategies and ensuring compliance with industry regulations.
Profile Photo
