AKPOTUNIMIBOFA CHARLES NDONI
Summary
5007 47ST, T0B 1V0 HARDISTY, ALBERTA,CANADA.
PROFESSIONAL SUMMARY
Solutions-focused, result driven professional with proven abilities in managing projects from concept to completion ensuring that project objectives and deliverables are achieved on time. Over several years of diverse experience in risk management, information systems, technology security risk assessment, and financial compliance, including Internal Audit, audit and assurance services; with exceptional leadership skills to manage cross-functional teams in various time zones while maintaining high-quality standards, effective communication style both verbal and written and effective use of technology to transform business operations/processes for maximum productivity. Strong analytical skill which includes problem resolution by means of IT solutions delivery.
Overview
12
12
years of professional experience
Work History
COMPLIANCE OFFICER, SENIOR IT SECURITY ANALYST
Bayelsa Medical University
, Bayelsa
04.2019 - 10.2021
SECURITY OPERATIONS CENTER ANALYST
Sharon Finance and Properties Ltd
06.2016 - 03.2019
- Fct
- Independently performed all aspects of the security controls assessment from kickoff to submission of all assessment deliverables
- Coordinated all aspects of testing with relevant stakeholders and team lead
- Developed security assessment plan with input from stakeholders
- Developed and tailored evidence request lists
- Conduct and led assessment interviews and tests
- Coordinated with team lead and client management to develop and maintain a project plan
- Helped to ensure that all required deliverables are completed according to schedule and at a high quality with the understanding that deliverables will undergo independent review by client
- Provided insightful recommendations to client to improve security posture.
IT AUDIT/COMPLAINCE ANALYST
Pontaco Nig Ltd, Lugbe
03.2010 - 05.2016
- Fct
- Assisted and led Corporate Security initiatives and projects as required
- Assisted with technical security administration, testing and operational support
- Developed and maintained metrics to ensure accurate reporting of risks identified
- Performed Risk Assessments, Compliance Assessments, Gap Analysis and Remediation, and Threat and Vulnerability Assessments based on ISO 27001:2013 framework
- Established effective working relationships w/ peers both internal & external to information security practice
- Assisted in the investigation and resolution of security incidents as needed
- Travel to other store locations when needed
- Responsible for independently completing all aspects of the audit process including planning, performing risk-based assessments, identifying controls used to manage risks, as well as developing and executing testing procedures to assess the adequacy and effectiveness of the controls within budgeted timeframes
- Responsible for writing audit reports with observations, exposures, and recommendations
- Communicated effectively and worked closely with Business Process owners, application Owners and supervised the audit work of the less experienced auditors on a project-by-project basis
- Serves as a subject matter expert and peer mentor to others in the Audit department
- Conducted operational, compliance, and financial audits throughout our domestic operations
- Reviewed compliance with applicable laws and regulations
- Documented internal controls and procedures
- Prepared management reports to communicate audit results
- Provided recommendations for business process improvements and internal controls.
Supplier/Third Parties Risk Management Assessment
- From end to end
- Security infrastructure audit - SOC Audit, Network operating Center Audit, Data centers onsite audit including Cloud infrastructure assessment experience
- Manage the IT SOX (ITGC) program - involves building sustainable control frameworks leveraged by internal and external audit teams respectively
- Leading and directing IT Security Audits for each of the following areas: Operating systems (Windows, UNIX flavors & Mainframe), Application Security including ERM systems, Network Security and System Development Life Cycle SDLC) including AGILE methodology
- Leveraging regulatory (frameworks standards and various audit drivers like PCI -DSS, EU-GDPR, HITRUST (CSF), and ISO 27001 series Frameworks to meet risk and compliance requirement during audit engagements
- Knowledge and management of Enterprise IT security operations processes- Security Incident management, change management procedure, IAM/PAM/PIM implementation, and processes
- Developing information security policies, reviewing, documenting of standards and procedures from actual state to desires states
- Working with Data owner and Business process owners to realign and reengineering business management controls to meet enterprise goals and objectives.
IT Security Risk Analyst
- I supported and enhanced the enterprise risk management framework, policies, procedures and tools to reduce the organization’s susceptibility to cybersecurity threats and vulnerabilities
- Identified, assessed, prioritized, and monitored internal and external risks to information systems
- Assisted in gathering and preparing evidence in support of audits, assessments, and investigations
- Performed incident response, coordinated with compliance when appropriate documented resolutions are required
- Monitored patch and vulnerability management and generated reports to effectively communicate with system owners and IT leadership
- Established, enhanced, and managed processes to reduce security risk to information systems
- Performed risk assessments based on NIST and HIPAA in coordination with business units and IT
- Monitored and reported patch and vulnerability management of computers, servers etc
- Monitored and reported the encryption status of computers, servers and mobile devices
- Engaged with stakeholders to achieve timely remediation of security control gaps
- Performed incident response regarding lost or stolen devices, phishing attempts etc
- Drafted updates to existing information security policy and procedures
- Track relevant metrics and KPIs to communicate status of the risk management program.
Education
Master of Arts - Accounting
Ahmadu Bello University
06.2016
Certified National Accountant - undefined
Postgraduate College of Accountancy
10.2010
Bachelor of Science - Banking and Finance
09.2006
Diploma - Education | Business Education
Delta State University
09.2003
Certified Information Systems Auditor (CISA)– (In Progress) - undefined
Timeline
COMPLIANCE OFFICER, SENIOR IT SECURITY ANALYST
Bayelsa Medical University
04.2019 - 10.2021
SECURITY OPERATIONS CENTER ANALYST
Sharon Finance and Properties Ltd
06.2016 - 03.2019
IT AUDIT/COMPLAINCE ANALYST
Pontaco Nig Ltd, Lugbe
03.2010 - 05.2016
Supplier/Third Parties Risk Management Assessment
IT Security Risk Analyst
Master of Arts - Accounting
Ahmadu Bello University
Certified National Accountant - undefined
Postgraduate College of Accountancy
Bachelor of Science - Banking and Finance
Diploma - Education | Business Education
Delta State University
Certified Information Systems Auditor (CISA)– (In Progress) - undefined
Similar Profiles
AMINAT TAIWOAMINAT TAIWO
Medical Laboratory Scientist Intern at NIGER DELTA UNIVERSITY TEACHING HOSPITAL, OKOLOBIRI BAYELSA STATE, NIGERIAMedical Laboratory Scientist Intern at NIGER DELTA UNIVERSITY TEACHING HOSPITAL, OKOLOBIRI BAYELSA STATE, NIGERIA
Udechukwu Peter EgbuhuzorUdechukwu Peter Egbuhuzor
Senior Lecturer at Department of Mathematics and Statistics, Federal University Otuoke, Bayelsa StateSenior Lecturer at Department of Mathematics and Statistics, Federal University Otuoke, Bayelsa State
ALAERE WOKOMAALAERE WOKOMA
Senior Legal Counsel at Government of Bayelsa State - NigeriaSenior Legal Counsel at Government of Bayelsa State - Nigeria
Fiaz MohamedFiaz Mohamed
Information security Compliance Officer / Analyst at Dubai AirportsInformation security Compliance Officer / Analyst at Dubai Airports
Bridgett JohnsonBridgett Johnson
Senior IT Security & Compliance Analyst at SedgwickSenior IT Security & Compliance Analyst at Sedgwick