DOLAPO JOSHUA
Cyber And Information Security Specialist
Summary
Analytical professional with substantial experience providing security assurance and protecting an organisation's critical assets. Proven success in achieving security assurance using Instrumental in utilizing a diverse range of cyber security tools and methodologies to produce cyber security plans and threat models to ensure the security of business information.
Practical experience in implementing ISO27001, NIST, Cyber Essential Plus, CIS Top 20 controls and GDPR frameworks. Highly skilled in risk management methodologies and implementation of relevant standards including PCI-DSS, and SOC 2 to ensure security assurance across the business.
Dedicated Information Security professional with history of meeting company goals utilizing consistent and organized practices. Skilled in working under pressure and adapting to new situations and challenges to best enhance the organizational brand.
Overview
5
5
years of professional experience
8
8
Certifications
Work History
TLT Solicitor
- Supported the firm by maintaining the firm's internal information security resilience and ensuring the firm complies with internal Information Security policies and procedures
- Provided responses to client and supplier questionnaires and correspondence with information security queries
- Spread headed internal audit to ensure policies and standards are adhered to regularly accomplished annual audit
- Supported with other tasks/ projects and provided administrative support to the Risk team as and as when required
- Conducted the third-party due diligence and risk assessments
- Reported non-compliance and risk identified through an agreed process
- Enhanced productivity by resolving highlighted vulnerability issues and applying remediation action plans in coordination with the technical team
Information Security Specialist
Open University
03.2022 - 08.2022
- Managed Open College of Arts (OCA), new acquired higher institution of Open University, to implement and improve their security maturity to ensure integrity and security of the network, clients and students' data are protected
- Documented Policies, Procedures and Standards to support ISMS
- Managed College's vendor-relating systems and processes, ensuring expected compliance and performance standards
- Directed and monitor College exposure to Cyber Security risks and led in aligning with Cyber Essentials Plus compliance standards
- Developed and Maintained College Security Standards for new suppliers to sign before onboarding suppliers
- Spearheaded for Continuous improvement of the overall security of the College to ensure business continuity is maintained as expected
Information Security & Compliance Officer
01.2022 - 02.2022
- Evoke Creative
- Supporting and Maintaining Information Security Management System (ISMS)
- Successfully implemented ISO27001 Gap analysis across the business units during SO27001 Implementation phase
- Collaboratively delivered Statement of Applicability and formulated a risk treatment plan
- Providing responses to client and supplier questionnaires and correspondence in relation to Information security queries
- Collaborated with the audit team to ensure the business is in conformity with policies and standards as required
- Contributed to projects and provided administrative support to the Risk team as and when required
- Correlate security plans with 3rd party suppliers/providers
Information Security Officer
05.2021 - 09.2021
Information Security Consultant
Technobeacon Consulting Limited
12.2020 - 05.2021
- Managed information security by carrying out detailed IT risk assessments regarding key infrastructure and applications
- Controlled and managed legal, physical, and technical risks by utilizing ISO27001 specifications for clients
- Evaluated potential impact on client's data and information by effectively utilizing comprehensive processes of threat vulnerability management
- Maintained up-to-date knowledge of ISO standards, threats, countermeasures, best practices, and technologies
- Implement the Security Risk Assessment methodology, policy, and process
- Capably contributed towards the successful resolution of IT security audits and evaluation of regulatory compliance findings to highlight ambiguities
- Monitor the company's information security risk profile and risk appetite to achieve an optimal balance between business risk and opportunities
- Fully utilized ISO27001 Specifications for clients during IT security assessment for legal, physical, and technical controls of risk
- Updated the risk register, notify appropriate stakeholders, meet with business leaders where necessary, and help to drive risk to an acceptable level throughout the business units
- Ensured proper treatment of reported information security risks by reviewing risk mitigation plans, following up on risk mitigation activities, and escalating non-mitigated risks.
Information Security Officer
Findworka
12.2015 - 02.2020
- Controlled and collaborated on threat vulnerability management procedures to analyze the potential effects on client data
- Orchestrated IT risk assessments for clients to maintain information security on key infrastructure and applications
- Conducted and accomplished IT security assessments with ISO27001 implementation
- Formulated IT best practice standards, policies, procedures, and processes to ensure high-quality IT security
- Reviewed regulatory compliance finding to identify possible risks
- Accomplished IT security audit process, ensuring successful resolution
- Supported and improved the drafting of analysis reports for senior management and stakeholder
- Supported the business by maintaining internal information security resilience and ensuring the business complies with internal information security policies and procedures
- Providing responses to client and supplier questionnaires and correspondence in relation to Information security queries
- Supporting auditing to ensure internal standards are being met regularly
- Delivered projects and provided administrative support to the Risk team as and when required
- Correlate security plans with 3rd party suppliers/providers
- Supported and Maintained of Information Security Management System (ISMS)
- Carried and mapped out a detailed analysis of the data captured by monitoring systems
- Escalated incidents to senior management where necessary & acting as a point of contact throughout the investigation
Education
Bachelor of Degree - Computer Science
Ado Ekiti State University
Skills
Technicalundefined
Certification
PCI-DSS
Movies, Music, Dancing, Playing football
I love to watch movies except for horror ones. I love to dance to good music. I love to play football every Wednesday night.
Work Availability
monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse
Quote
You only have to do a few things right in your life so long as you don’t do too many things wrong.
Warren Buffett
Timeline
Information Security Specialist
Open University
03.2022 - 08.2022
Information Security & Compliance Officer
01.2022 - 02.2022
Information Security Officer
05.2021 - 09.2021
Information Security Consultant
Technobeacon Consulting Limited
12.2020 - 05.2021
Information Security Officer
Findworka
12.2015 - 02.2020
TLT Solicitor
Bachelor of Degree - Computer Science
Ado Ekiti State University
Similar Profiles
Shlomo JaffeShlomo Jaffe
Highschool Math Tutor at NAHighschool Math Tutor at NA
CLÉLIA CROZE-LABBECLÉLIA CROZE-LABBE
Baby sitter at NABaby sitter at NA
Jaylen Tindale-SeymourJaylen Tindale-Seymour
Property Maintenance at NAProperty Maintenance at NA
Priscila TeixeiraPriscila Teixeira
Babysitter at NABabysitter at NA
LUMIAO DAILUMIAO DAI
Freelance Translator at Self-employeedFreelance Translator at Self-employeed