Summary
Overview
Work History
Education
Skills
Certification
Key Projects And Achievements
References
Timeline
Generic

Inoremhe Stella Ogonna

London

Summary

Proactive and detail-oriented GRC professional with one year plus experience in risk assessment, managing compliance workflows, and streamlining audit readiness using One Trust, vulnerability and threat assessment, third party risk assessment, developing information security policies and regulatory compliance with standards such as ISO 27001, GDPR, PCI DSS, and NIST, conducted a security awareness campaign and reduced phishing incident by 90%. Excellent in communication and analytical skills, good in collaborating with stakeholders to develop and implement effective controls conveying complex risks in non-technical terms to stake holders for better understanding. Analytical skills with a proactive approach in delivering solutions to meet information security requirement and mitigating cyber threats. Hands on experience with tools such as One Trust, Nessus, Action1, Wizer and others.

Overview

10
10
years of professional experience
1
1
Certification

Work History

Cyber Security GRC Analyst

Cybarik Inc.
01.2024 - Current
  • Conduct thorough risk assessments, identify vulnerabilities, and create mitigation plans to safeguard systems and data.
  • Work with stakeholders to comply with GDPR, ISO 27001, PCI DSS, and NIST standards.
  • Evaluate and update cybersecurity policies and processes to meet evolving threats and regulatory needs.
  • Conduct security assessments for third-party vendors to ensure they meet organisational risk tolerance and compliance standards.
  • Provide senior leadership with actionable risk reports that translate technical findings into simple business recommendations.
  • Collaborate with different departments to enhance a culture of compliance, security awareness, and continuous improvement.
  • Supervise IT General Controls (ITGC) and device security, including anti-malware and patch management.
  • Utilise GRC tools OneTrust for tracking, reporting, and managing compliance activities.
  • Manage and update the Risk Register so that all identified risks have clear ownership, mitigation measures, and review cycles.

Cybersecurity Intern

Cyblack
09.2024 - 12.2024
  • Conduct study on human factors in cybersecurity to discover weaknesses.
  • Utilise Nessus for vulnerability scanning and Wizer for security awareness training programs.
  • Identified staff awareness gaps through a human factors research in cybersecurity, which resulted in the implementation of focused training initiatives that, within six months, decreased phishing simulation click rates by 40%.
  • OneTrust was used to manage and monitor compliance, streamlining GDPR and ISO 27001 reporting procedures and reducing down on compliance reporting time by 25%.
  • Developed and revised three important policies (Acceptable Use, Data Retention, and Information Security) to ensure complete compliance with UK GDPR, NIST, and ISO 27001 standards.
  • Contribute to threat intelligence initiatives to strengthen organisational defences.

Cyber Security Analyst Intern

CyberCare Limited
02.2023 - 08.2023
  • Develop and implemented security policies to mitigate risks and improve control effectiveness.
  • Conduct regular security checks, gap analyses, and risk assessments to ensure compliance with Cyber Essentials standards.
  • Investigate incidents and provided remediation strategies to address identified vulnerabilities.
  • Manage access privileges using Microsoft Azure and ensured the secure configuration of systems.

IT Service Desk Analyst

Shell Petroleum Development Company
07.2015 - 02.2022
  • Act as the first point of contact for over 6,000 users across 30 field facilities, resolving technical issues with a 90% success rate.
  • Log and manage incidents through ServiceNow, escalating complex cases to second-line support when necessary.
  • Ensure operational continuity by providing timely solutions and maintaining accountability for unresolved issues.
  • Recognize for exceptional service delivery through multiple internal awards and consistently exceeding performance targets.

Education

M.Sc. - Cyber Security Technology

Northumbria University
London Campus
03.2024

B.Sc. - Management

University of Nigeria
07.2011

Skills

  • Managing Vulnerabilities and Threats
  • Assessing Vendor Risk and Compliance
  • Risk Assessment and management
  • Compliance (ISO 27001, GDPR, PCI DSS, NIST)
  • Security Awareness Campaigns
  • Policy Development and Review
  • Stakeholder Engagement
  • Excellent Communication Skills
  • Good Team spirit
  • Good Analytical and Problem-Solving Skills
  • Nessus
  • One Trust

Certification

  • ISO 27001 Lead Implementer, In view
  • Certified Tech Risk and Compliance Professional (OneTrust), 06/01/24
  • Certified Third-Party Risk Management Professional (OneTrust), 06/01/24
  • ITIL Foundation Level (Axelos Global), 01/01/19
  • Creating a Positive Customer Service Experience, 01/01/19

Key Projects And Achievements

  • Achieve consistent delivery of service against scorecard and Service levels.
  • Lead a team to develop and update security policies to improve compliance and control effectiveness.
  • Improve compliance reporting efficiency by 30% through streamlining workflows in OneTrust.
  • Review Information security policy and implemented security controls.
  • Conduct phishing simulation campaign which improved employee awareness and reducing phishing incident by 90%.
  • Reduce risk exposure by supporting remediation of high-priority vulnerabilities in collaboration with IT and Security teams.
  • Receive several recognitions for excellent IT Support through an internal company channel called High Five.
  • Conduct academic research on the impact of cyber security on online retailers in United Kingdom.

References

Available upon request.

Timeline

Cybersecurity Intern

Cyblack
09.2024 - 12.2024

Cyber Security GRC Analyst

Cybarik Inc.
01.2024 - Current

Cyber Security Analyst Intern

CyberCare Limited
02.2023 - 08.2023

IT Service Desk Analyst

Shell Petroleum Development Company
07.2015 - 02.2022

B.Sc. - Management

University of Nigeria

M.Sc. - Cyber Security Technology

Northumbria University

Similar Profiles

CREATE PROFILE
Inoremhe Stella Ogonna