Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

KENNETH OKAFOR

Toronto,Canada

Summary

Dynamic and results-driven cybersecurity professional with over 2 years of experience in GRC analysis, IT audit, and cloud computing. Proven track record of orchestrating successful projects and implementing robust security protocols to safeguard organizational assets. Skilled in leveraging industry-leading tools to assess risks, ensure regulatory compliance, and drive strategic initiatives. Adept at driving process improvements, managing controls, and aligning IT practices with regulatory standards.

Overview

6
6
years of professional experience
1
1
Certification

Work History

Information Security Analyst and GRC Analyst

Seneca Polytechnic
01.2024 - Current
  • Managed Identity and Access Management systems, implementing robust access controls and role-based policies to secure enterprise environments.
  • Provide support across various duties and act as a backup for other team members when required.
  • Lead testing of designated IT General Controls, assessing both the design and operational effectiveness of these controls efficiently and in a timely manner.
  • Identified and escalated critical security issues to stakeholders, mitigating risks and aligning with enterprise frameworks.
  • Ensure risk mitigation strategies are effectively integrated into disaster recovery plans, implement risk mitigation strategies to address identified risks.
  • Developed security governance frameworks, Implement the governance risk framework in the first line, policies, and procedures to meet industry standards.

Information Security Analyst

First Bank Plc Nigeria
07.2019 - 07.2023
  • Identified and prioritized vulnerabilities in managed systems and business software using vulnerability scanning tools.
  • Conducted phishing simulations and employee training to enhance security awareness across departments.
  • Conducted vulnerability assessments, patch management cycles and testing to identify and validate vulnerabilities not detectable by automated scanning tools.
  • Monitored and reported on the status of vulnerability management activities, including metrics on volume, severity, and resolution time.
  • Documented incident response procedures and contributed to incident playbook development.
  • Supported the deployment of firewalls, DLP solutions, and secure email gateways.

Education

Postgraduate - Information Technology Network Security

Conestoga College
12.2024

Bachelor of Science (BSc) - International System

Limkokwing University
12.2017

Diploma - Information Technology (DiT)

Bostonweb College
12.2014

Skills

  • Governance, Risk, and Compliance (GRC): RSA Archer, MetricStream, Compliance 360, SAP
  • Created governance policies and procedures for data privacy, access management, and incident responseIT Audit: ACL Analytics, Teammate, IDEA, Audit Board
  • Cybersecurity Analysis: SIEM platforms
  • Developed and maintained enterprise risk and compliance frameworks aligned with NIST, ISO 27001, and SOC 2
  • Compliance Standards and Frameworks: NIST Cybersecurity Framework, ISO 27001, GDPR, HIPAA, PCI DSS, IAM, ServiceNow, CyberArk, AWS Identity Center, AZ-900
  • Risk Assessment and Management: Various frameworks, and risk management software

Certification

Certified Information Security Analyst (CISA) Nov 2024

Timeline

Information Security Analyst and GRC Analyst

Seneca Polytechnic
01.2024 - Current

Information Security Analyst

First Bank Plc Nigeria
07.2019 - 07.2023

Bachelor of Science (BSc) - International System

Limkokwing University

Diploma - Information Technology (DiT)

Bostonweb College

Postgraduate - Information Technology Network Security

Conestoga College
KENNETH OKAFOR