Emmanuel Okonkwo
Beechville,NS
Summary
Ambitious Security professional committed to formulating innovative solutions to challenges while optimizing processes. Polished in developing and implementing security plans and procedures and developing strategies to improve security in both infrastructure and applications. Logical and analytical leader familiar with security tools and technologies such as AWS security services, kubernetes, SAST and DAST tools.
Overview
15
15
years of professional experience
1
1
Certification
Work History
Senior Security Architect
Pivotree
02.2023 - Current
- Developed a cloud security improvement program using Cloud Security Alliance’s Cloud Control Matrix and AWS Security Services and best practices
- Initiated AWS Security Improvement Program assessment and created an improvement roadmap
- Re-architected a SaaS product for improved security using Amazon EKS, achieving significant operational efficiencies and security enhancements
- Implemented a DevSecOps program by Integrating security testing and monitoring into CI/CD pipeline to enhance software/product security and discover security defects earlier in the SDLC
- Initiated Software Assurance Maturity Model (SAMM) program and have improved posture rating by 30% working with product engineering, software development and QA teams
- Implemented a central vulnerability management solution to gather security findings from different security tools integrated into CI/CD pipelines
- Developed and deliver security training programs for developers and other stakeholders to increase awareness of secure coding practices and identified security champions to foster security across the business.
- Worked closely with vendors to assess third-party products'' compatibility with existing systems while maintaining stringent security standards.
Senior Security Architect
Mariner Innovations
02.2020 - 02.2023
- Implemented DevSecOps program using Defect Dojo, GitLab, Sonarqube, Dependency Check, OWASP ZAP, Inspec, Ansible, Trivy, Rapid7, Falco
- Created a process and document that helped PCI DSS requirement implementation and helped organisations prepare for pass PCI compliance audit
- Developed security roadmap for several organizations and implemented security practices that improved their security posture by an average of 50%
- Assisted in developing, maintaining, and testing security Incident Response plan and contributed to general security education and documentation
- Worked closely with solutions architects, development and DevOps teams to perform threat modelling and integrate security best practices in system development lifecycle
- Built cloud security programs for several organizations using suites of AWS security services.
- Implemented continuous monitoring processes to detect potential vulnerabilities, proactively addressing risks before they escalated into full-blown incidents.
- Collaborated with cross-functional teams to develop secure software applications, reducing instances of data breaches and security incidents.
- Enhanced cloud security by designing and implementing comprehensive security architecture solutions.
Data Specialist
NTT Data
07.2019 - 02.2020
- Managed confidential information regarding patient accounts while complying with HIPAA guidelines and regulations and also applied myself to other required tasks.
- Consistently met deadlines and delivered high-quality work, demonstrating a strong commitment to excellence in data management.
Cybersecurity Manager
Elint Gateway
01.2016 - 05.2019
- Conducted security assessments, reviews and continuous improvement for cloud services, enhancing system security requirements and compliance and improved organization security rating by 50%.
- Championed a culture of continuous improvement within the cybersecurity team, fostering innovation and collaboration among members.
- Delivered cybersecurity training programs, raising employee awareness on potential threats and best practices.
Information Security Specialist
Visafone/MTN Communication
10.2010 - 01.2016
- Managed IT and business process audits, vulnerability assessments, and penetration testing, reducing security incidents by implementing effective countermeasures.
- Implemented multi-factor authentication solutions to enhance access controls across critical systems and applications.
- Partnered with external vendors to evaluate and select appropriate tools for strengthening the company''s overall security posture.
IT Support
Zenith Insurance PLC
10.2009 - 10.2010
- Supported major business software migration, ensuring data integrity while working with product, engineering, marketing and service teams.
Education
Bachelor of Science - Mechanical Engineering
Anambra State University, Uli
Nigeria06.2007
Skills
- Risk and Security Assessments
- DevSecOps Proficiency
- Standards and Tools Proficiency
- Vulnerability Management
- Security Testing Expertise
- Cloud Security Engineer
- Intrusion Detection Systems
- Identity and Access Management
- Security Information and Event Management
- Security Awareness Training
- Application security
- Security policy development
Certification
- Certified Information Systems Auditor (CISA), ISACA
- Certified Information System Security Professional (CISSP), ISC2
- Certified Ethical Hacker (CEH), EC-COUNCIL
- Certified Cloud Security Professional (CCSP), ISC2
- Certified Kubernetes Administrator (CKA), CNCF
- Certified Kubernetes Security Specialist (CKS) CNCF
- Splunk Core Certified User
- Certified DevSecOps Professional
- AWS Technical Essentials AWS
- AWS Security Speciality
- OWASP SAMM
Training
- Annual training membership with Cybrary to enhance continuous cybersecurity education program
- Ongoing training program with KodeKloud in pursuit of continuous improvement in security engineering within the DevSecOps space
- Ongoing participation in tryhackme.com – an ethical hacking environment for building technical skills
Language
English
Native or Bilingual
Timeline
Senior Security Architect
Pivotree
02.2023 - Current
Senior Security Architect
Mariner Innovations
02.2020 - 02.2023
Data Specialist
NTT Data
07.2019 - 02.2020
Cybersecurity Manager
Elint Gateway
01.2016 - 05.2019
Information Security Specialist
Visafone/MTN Communication
10.2010 - 01.2016
IT Support
Zenith Insurance PLC
10.2009 - 10.2010
Bachelor of Science - Mechanical Engineering
Anambra State University, Uli
Similar Profiles
Sheryl KuriakoseSheryl Kuriakose
Sr. Resource Manager at PivotreeSr. Resource Manager at Pivotree
Akash K ShrivastavaAkash K Shrivastava
Sr Quality Analyst at PivotreeSr Quality Analyst at Pivotree
SREENITYA WOONNASREENITYA WOONNA
Business Analyst at PivotreeBusiness Analyst at Pivotree
PURNIMA SHARMAPURNIMA SHARMA
MANAGER- SPECIAL PROJECTS at PIVOTREEMANAGER- SPECIAL PROJECTS at PIVOTREE
TANVEER KAURTANVEER KAUR
Inclusive Support Staff at YMCAInclusive Support Staff at YMCA