Work Preference
Summary
Overview
Work History
Quote
Certification
Skills
Education
Timeline
TECHNICAL ACUMEN & FRAMEWORKS
SoftwareDeveloper
Olisaemeka

Olisaemeka

Principal Analyst | Risk Mgmt & Compliance
Cleveland,OH

Work Preference

Job Search Status

Open to work
Desired start date: Immediately

Work Type

Full TimePart TimeContract WorkConsultingVolunteer

Location Preference

RemoteHybridOn-Site
Location: Cleveland, OH
Open to relocation: Yes

Salary Range

90000/yr - 200000/yr

Important To Me

Work from home optionPersonal development programsCareer advancementWork-life balanceHealthcare benefitsCompany CultureFlexible work hours

Summary

Compliance & Risk Consultant with experience designing and optimizing GRC frameworks across finance, technology, and cloud-driven environments. Results-driven analyst with years of experience in Information Technology and General Control (ITGC) Systems, Specialized expertise in comprehensive audits, control testing, and automated compliance monitoring. Demonstrated expertise in enterprise risk assessments, third-party risk oversight across 50+ vendor portfolios, and audit readiness coordination for ISO 27001 and SOC 2 engagements. Improved client control effectiveness by 30% within initial reporting cycles through risk-prioritized remediation and streamlined governance structures.

Proficiencies: NIST RMF/CSF - 800-53/2.0, ISO/IEC 27001, SOX, and COBIT. SOC 2, HIPAA, GDPR, and PCI-DSS, remediation roadmaps. Cloud-centric security architecture, scoping, and threat analysis across AWS and Azure environments. Collaborations, walkthroughs, IOT/cloud Centric/SaaS.

Overview

8
8
years of professional experience
3
3
Certificate
10
10
years of post-secondary education

Work History

Compliance & Risk Auditor | Consultant

247 VoIP
Trenton, NJ
05.2025 - Current

Compliance & Risk Auditor|Consultant| 247 VoIP, Trenton, New Jersey Jun 2025 – Present
Advised clients across finance and technology sectors on end-to-end GRC program design, aligning compliance posture with NIST CSF, RMF, ISO 27001, and GDPR requirements across 15+ active engagements.
Conducted enterprise-wide risk assessments using ISO 31000 methodology, delivering remediation roadmaps that reduced average client control deficiencies by 30% within the first quarter.
Directed internal audits of security controls across infrastructure, applications, and data, delivering risk-ranked findings to guide quarterly remediation.
Architected compliance policy frameworks and control libraries tailored to client regulatory environments, cutting policy gaps identified in external audits by 45%.
Evaluated third-party vendor risk across 50+ portfolios using NIST SP 800-161 supply chain guidelines, surfacing critical contractual and operational exposures for client leadership.
Translated complex regulatory findings into board-ready risk dashboards and executive briefings, enabling faster prioritization of high-impact compliance initiatives.
Coordinated ISO 27001 and SOC 2 audit readiness activities covering evidence mapping, control testing, and auditor liaison, achieving clean audit outcomes for three clients within six months.
Led SOX ITGC audits across financial systems, achieving 100% compliance and eliminating material weaknesses.

Tech Audidor IT Compliance

Iron Mountain
Portsmouth, NH
03.2024 - 05.2026

Assessed cloud infrastructure against NIST 800-53 Rev. 5 controls, resolving 95% of identified gaps within 60 days and measurably improving AWS security posture.
Led access control reviews across Active Directory for 10,000+ users, enforcing least-privilege principles under ITGC standards and eliminating excessive entitlements across critical systems.
Managed annual ISO 27001 surveillance audits end-to-end, remediating 22 nonconformities pre-assessment and sustaining certification across three consecutive audit cycles.
Audited PCI-DSS network segmentation controls, verifying cardholder data environment isolation and validating compliance ahead of annual QSA assessments.
Strengthened business continuity posture by overseeing 12 structured DR failover tests, reducing RTO from 24 to 6 hours in alignment with NIST SP 800-34 guidelines

Compliance and Risk Analyst

247 VoIP
Trenton, NJ
01.2021 - 02.2024

Mapped regulatory obligations across FCC, CPNI, and GDPR frameworks for voice and data services, building a unified compliance register that cut audit response times by 35%.
Performed quarterly risk assessments across network and operational systems, identifying 12+ critical vulnerabilities and delivering structured risk scoring reports to senior leadership.
Developed and maintained internal compliance policies covering data retention, call recording, and privacy disclosures, reducing policy gaps flagged in regulatory reviews by 40%.
Monitored third-party vendor SLAs and contractual compliance across 25+ agreements, flagging deviations early and eliminating two high-risk supplier exposures within the first engagement year.
Consolidated control evidence and remediation tracking across 2 successive external audit cycles, achieving zero repeat findings and a 20% reduction in outstanding control deficiencies.

Risk Mannagement Analyst

Oddity & Aesthetic Innovations LLC
Shreveport, LA
11.2018 - 12.2020

Executed SOX 404 compliance testing across financial reporting systems, achieving 100% audit pass rates and zero material weaknesses across two consecutive fiscal year cycles.
Drove GDPR privacy impact assessments for 20 product and process initiatives, enforcing lawful data handling standards and eliminating regulatory penalty exposure across EU operations.
Analyzed PCI-DSS control gaps across payment processing environments, coordinating remediation efforts that achieved full compliance three weeks ahead of external audit deadlines.
Compiled and presented risk evidence and control documentation across three consecutive regulatory examination cycles, contributing to zero major audit findings.
Prepared monthly risk reports featuring COSO-aligned heat maps and trend analysis, providing leadership with visibility that accelerated remediation timelines by 25%.
Overhauled a 500+ document policy management repository, enforcing version control protocols and ensuring continuous audit readiness in line with ISO 27001 documentation standards.

Quote

Pray Hard! Work even Harder-Smarter!!!
Olisaemeka Obidi

Certification

Certified Information Systems Auditor (CISA)
Certified in Risk and Information Systems Control (CRISC)
Certificate in Prince2 Project management (foundation)

Skills

  • Governance, Risk & Compliance (GRC)
  • Policy development and enforcement
  • Cybersecurity standards knowledge
  • Vendor Contract Compliance Review
  • Data Breach Response Coordination
  • Regulatory Metrics Analysis
  • Third-party risk management
  • Data privacy and protection standards
  • Risk Framework Implementation
  • Automated Compliance Monitoring
  • Board-Level Risk Reporting
  • Cross-functional Collaboration

Education

Bachelor of Engineering - Computer science and Engineering

Enugu State University of Science &Technology

Master's Program in Cloud Computing (In Pursuit) - Cloud Computing

SimpliLearn University
11.2024 - Current

Timeline

Compliance & Risk Auditor | Consultant

247 VoIP
05.2025 - Current

Master's Program in Cloud Computing (In Pursuit) - Cloud Computing

SimpliLearn University
11.2024 - Current

Tech Audidor IT Compliance

Iron Mountain
03.2024 - 05.2026

Compliance and Risk Analyst

247 VoIP
01.2021 - 02.2024

Risk Mannagement Analyst

Oddity & Aesthetic Innovations LLC
11.2018 - 12.2020

Bachelor of Engineering - Computer science and Engineering

Enugu State University of Science &Technology

TECHNICAL ACUMEN & FRAMEWORKS

Governance Risk & Compliance (GRC) Software: ServiceNow, Archer, EasyAudit, Workiva, InfraNodes.

Security Assessment Tools: Nessus, Nmap, Wireshark, Kali Linux, Metasploit, Splunk.

Productivity Tools: Google Suite and Microsoft Office Tools (MS Word, Excel, PowerPoint).

Support Tools: Remote Support (Bomgar, TeamViewer, LogMeIn), Antivirus (Sophos, ESET, Malwarebytes), Ticketing

Systems: (Ice, BMC Track-It, Smart Service Desk), Active Directory.

Standards & Frameworks: NIST RMF/CSF 800-53/2.0, ISO 2700, FedRAMP, FISMA, COBIT, PCI-DSS, HIPAA, IT General Controls

(ITGC), ERP Security Assessments, SOX, GDPR, SOC 2, ITIL, COSO, CCPA.FedRAMP, FISMA, COBIT, PCI-DSS, NIST RMF/CSF 800-53/2.0, ISO 27001, HIPAA, IT General Controls (ITGC), SSAE18 Attestation, ERP Security Assessments, SOX, GDPR, SOC 2, ITIL, COSO, CCPA.

Olisaemeka Principal Analyst | Risk Mgmt & Compliance
Resume profile built at MyPerfectResume.com