Aderemi Adedoyin

Supported ERCOT’s compliance program by assisting business process owners with remediation of issues identified through internal and external audits, compliance investigations, and control assessments. Provided guidance on NERC standards and ERCOT Regional Reliability Standards impacting system operations and reliability. Utilized compliance tools and methodologies to monitor, track, and report adherence to regulatory and internal requirements. Served as a resource to advise and lead process owners in strengthening documentation, improving processes, and enhancing compliance posture. Managed operational reporting to document performance, demonstrate compliance, and support audit readiness. Supported evidence collection, record retention, and continuous monitoring activities to ensure ongoing alignment with NERC CIP.

Monitored SIEM tools to support cybersecurity operations, including data collection, event correlation, incident detection, investigation, response, and tuning. Investigated security breaches and cybersecurity incidents, documenting impact and coordinating remediation efforts. Developed audits to assess whether information systems were protected, controlled, and aligned with organizational objectives. Conducted audit follow-ups to ensure identified risks were addressed. Communicated audit progress, findings, and recommendations to stakeholders. Collaborated with the security team to perform tests, identify network vulnerabilities, and support remediation activities. Stayed current on security trends, threats, and standards. Assisted in defining security tool requirements, conducting evaluations, and supporting security operations procedures. Supported continuous monitoring efforts by documenting security activities and controls within the eGRC platform.

Led enterprise client migrations from on-premise SWG environments to hybrid and cloud security solutions (CASB, SSE). Improved host-based security system reporting and resolution workflows, increasing efficiency and overall response performance. Enhanced ticket closure rates and customer satisfaction through streamlined processes and technical support. Supported over 1,000 clients and 500 employees by monitoring systems and providing audit support. Managed multiple security projects that strengthened organizational information security posture. Established and maintained compliance programs aligned with PCI-DSS, FedRAMP, FISMA, SOC 2 Type II, and HIPAA. Collaborated with stakeholders to define policies, procedures, and controls, and supported the implementation of IT risk management functions. Reviewed and refined the incident response process and updated incident response plans. Delivered employee training and security awareness programs to support proactive detection and reporting of potential incidents.

Maintained Information Security policies, standards, and procedures. Created and updated documentation for ISO 27001, 27017, 27701, and SOC 2 Type II, and assisted with annual audits. Reviewed and completed client security questionnaires, participated in audits, and tracked internal/external findings and remediation. Conducted periodic reviews and updates of policies, standards, guidelines, and SOPs. Delivered security awareness and phishing campaigns. Responded to security questionnaires and managed third-party risk monitoring and reporting. Supported incident response efforts related to third-party incidents or breaches. Participated in vendor management audit readiness activities. Collected and reviewed third-party documents such as SOC 2 reports, documented risks, and followed up on remediation. Monitored the bank’s security ratings through third-party platforms and identified associated risks. Worked with privacy and vendor risk tools including OneTrust VRM, Prevalent, Priva, ThirdPartyTrust, C1Risk, and others.