Bolatito Onireti
Grand Prairie,USA
Summary
Cybersecurity and risk management professional with 8+ years of experience in cyber risk assessments, auditing, and technology control reviews across financial services. Proven expertise in managing the full issue management lifecycle—providing proactive feedback on remediation progress, identifying potential gaps, and driving sustainable risk reduction. Adept at applying a risk-based approach to plan, execute, and adjust follow-up activities, ensuring timely and effective resolution of high-impact issues. Experienced in leading and coaching IT auditors, reviewing workpapers, and building strong partnerships with business and technology leaders, translating technical issues into business-relevant risks and influencing remediation strategies aligned with frameworks such as NIST CSF. Holds CISM and actively pursuing CISA certification.
Overview
7
7
years of professional experience
1
1
Certification
Work History
Principal Associate (Technology Auditor)
Capital One
06.2023 - Current
- Performed issue validation, providing proactive feedback on remediation progress, identifying gaps in corrective actions, and driving timely closure of audit and risk issues.
- In the capacity of a Technology Auditor, managed and facilitated the identification and remediation of technology/cyber related risk activities to ensure adherence to enterprise policies and regulatory requirements.
- Provide AIC support in issue dimensioning and drafting audit reports.
- Led activities required to complete planning documents, walkthrough and testing, identified control weaknesses, and communicated findings to stakeholders, ensuring compliance with auditing methodology and information security practices, and proposing viable solutions to address identified weaknesses.
Cybersecurity Risk and Regulatory Manager
PwC
12.2021 - 10.2022
- Led cybersecurity and infrastructure risk assessments, reviewing policies, standards, and governance frameworks to identify gaps and propose remediation.
- Directed regulatory risk assessments, producing executive-level presentations on cyber risk posture.
- Coordinated with cross-functional teams, translating technical vulnerabilities into risk statements for application/system owners.
- Monitored risk mitigation progress and developed dashboards for leadership reporting.
- Advised clients on cybersecurity policy compliance and regulatory readiness, aligning with NIST and COBIT standards.
Cybersecurity Compliance Management Consultant
Allstate Insurance Company
06.2019 - 12.2021
- Led and facilitated mock exams to determine regulatory compliance readiness of acquired company.
- Provided monthly reporting to leadership on identified gaps from Cyber Risk Assessments, planned remediation to gap closure and escalations.
- Acted as trusted advisor on security related issues, remediation requirements on company's policies, standards and procedures.
- Implemented strategic Issue Management approaches to streamline auditing processes and improve traction with remediation work.
- Delivered high-quality presentations to stakeholders, effectively communicating project objectives and
results.
Education
MBA & MS - Cybersecurity
University of Dallas
Irving, TXBachelor of Science - Electrical & Electronic Engineering
University of Leicester
United KingdomSkills
- Issue identification, validation, and remediation oversight
- Cybersecurity Risk Assessments
- Risk-based audit planning and scoping
- IT Audit & Regulatory Compliance (SOC2, NY DFS)
- Workpaper documentation and quality assurance review
- Coaching and reviewing junior auditors
- Audit Management Systems (AuditBoard/Archer)
Certification
- CISM
- CISA (in progress)
Timeline
Principal Associate (Technology Auditor)
Capital One
06.2023 - Current
Cybersecurity Risk and Regulatory Manager
PwC
12.2021 - 10.2022
Cybersecurity Compliance Management Consultant
Allstate Insurance Company
06.2019 - 12.2021
Bachelor of Science - Electrical & Electronic Engineering
University of Leicester
MBA & MS - Cybersecurity
University of Dallas