Summary
Overview
Work History
Education
Skills
Personal Information
Timeline
Generic

Adewale Odunuga

Owings Mills,MD

Summary

Results-driven Governance, Risk, and Compliance (GRC) Analyst with 5 years of experience in the healthcare and financial industries. Adept at conducting IT risk assessments, managing data privacy compliance, performing security assessments, and ensuring adherence to global regulatory requirements. Strong expertise in security frameworks such as NIST, ISO 27001, GDPR, CCPA, HIPAA, and PIPEDA. Proven ability to support privacy governance, incident response planning, and third-party risk management.

Overview

6
6
years of professional experience

Work History

Compliance Analyst

Skillweed Inc
TX
01.2024 - Current
  • Conduct IT risk assessments and security control mappings to frameworks such as NIST, ISO 27001, GDPR, CCPA, and PIPEDA to ensure regulatory compliance.
  • Assist in managing and maintaining the firm’s data privacy software platform (One Trust) to support global data protection regulations.
  • Develop and implement data processing management strategies in accordance with privacy laws and industry standards.
  • Conduct Data Privacy Impact Assessments (DPIA), Privacy Impact Assessments (PIA), and Data Security Assessments to evaluate potential risks.
  • Support privacy governance efforts by maintaining and updating privacy policies, procedures, and responding to data subject requests.
  • Assist with Privacy by Design initiatives, Vendor Risk Assessments, and Transfer Impact Assessments to ensure compliance with global privacy regulations.
  • Perform security assessments in asset management and threat intelligence, providing key insights for risk mitigation strategies.
  • Help investigate and respond to data breaches, regulatory inquiries, and litigation concerns related to data privacy and governance.
  • Assist in third-party risk management efforts, including vendor questionnaires and security assessments.
  • Developed and enhanced incident response plans, IAM assessments, endpoint security evaluations, and SIEM assessments to strengthen organizational security posture.

Data Privacy Risk Analyst

UCDA Tech
MD
01.2022 - 05.2023
  • Assisted in IT risk management initiatives, ensuring alignment with industry standards and regulatory requirements.
  • Supported data governance initiatives, including automated data mapping and privacy risk management.
  • Conducted vendor security assessments to evaluate third-party risk and compliance with contractual obligations.
  • Provided recommendations for improving security controls and mitigating risks in financial and healthcare operations.
  • Aided in compliance audits, ensuring adherence to data protection laws and security best practices.
  • Developed and implemented risk mitigation strategies enhancing organizational resilience.
  • Conducted risk assessments to identify vulnerabilities within operational processes.
  • Analyzed data trends to inform strategic decision-making and improve risk management frameworks.
  • Prepared detailed reports summarizing risk analysis findings for senior leadership review.

Third Party Risk Assessment

Rehoboth Inc
MD
01.2020 - 08.2021
  • Developed and implemented an end-to-end TPMR program tailored to healthcare industry risks.
  • Conducted vendor risk assessments, due diligence, and continuous monitoring using NIST CSF and CMMI.
  • Assessed supply chain risks and identified gaps in vendor security postures.
  • Collaborated with legal and procurement teams to review contracts and SLAs, ensuring compliance with HIPAA, GDPR, and HITECH.
  • Provided risk mitigation strategies and recommended remediation plans for critical vendors.
  • Led third-party security audits and coordinated risk-based tiered assessments.
  • Self-motivated, with a strong sense of personal responsibility.
  • Worked effectively in fast-paced environments.
  • Assisted with day-to-day operations, working efficiently and productively with all team members.
  • Worked well in a team setting, providing support and guidance.
  • Adaptable and proficient in learning new concepts quickly and efficiently.

Education

Bachelor of Science - Management Information Systems

University of Baltimore
Baltimore, MD
01-2025

Associate of Arts - Accounting

Community College of Baltimore County
Dundalk, MD
01-2018

Skills

  • SIEM Tools (Splunk)
  • Corrective action plans
  • Risk Assessment & Compliance Management Tools
  • Identity & Access Management (IAM) Systems
  • Privacy Frameworks & Regulatory Compliance Tools
  • Compliance monitoring

Personal Information

Title: GRC Analyst

Timeline

Compliance Analyst

Skillweed Inc
01.2024 - Current

Data Privacy Risk Analyst

UCDA Tech
01.2022 - 05.2023

Third Party Risk Assessment

Rehoboth Inc
01.2020 - 08.2021

Bachelor of Science - Management Information Systems

University of Baltimore

Associate of Arts - Accounting

Community College of Baltimore County

Similar Profiles

CREATE PROFILE
Adewale Odunuga