Work Preference
Summary
Overview
Work History
Education
Skills
Certification
TECHNICAL ACUMEN & FRAMEWORKS
Quote
Work Availability
Timeline
SoftwareDeveloper
Olisaemeka Obidi

Olisaemeka Obidi

IT Risk Analyst

Work Preference

Work Type

Full Time

Location Preference

RemoteHybrid

Important To Me

Career advancementWork-life balancePersonal development programsHealthcare benefitsWork from home optionTeam Building / Company Retreats

Summary

Results-driven Governance, Risk, and Compliance Analyst with 3+ years of specialized expertise in information security, risk management, and compliance operations. Demonstrated success executing internal audits, control testing engagements, and cybersecurity maturity assessments using frameworks including NIST RMF/CSF - 800-53/2.0, ISO/IEC 27001, HITRUST, and COBIT. Track record Co-leading risk assessments, vulnerability management initiatives, and regulatory compliance evaluations for HIPAA, GDPR, FedRAMP, GLBA, PCI-DSS, and data breach notification laws. Skilled in conducting cybersecurity program capability assessments, developing risk-based recommendations, and creating remediation roadmaps that strengthen organizational security posture. Expert in cloud-centric security architecture, shared responsibility models, scoping, and threat landscape analysis across AWS and Azure environments. Adept at collaborating with cross-functional stakeholders through walkthroughs and workshops to evaluate information security, IOT Centric/SaaS processes and technology environments.

Overview

4
4
years of professional experience
3
3
Certification

Work History

IT Compliance Auditor

Iron Mountain
Portsmouth, US
05.2024 - Current
  • Executed comprehensive internal audit programs to examine security controls across infrastructure applications and data repositories, producing detailed findings reports with prioritized remediation recommendations
  • Conducted NIST 800-53 assessments for cloud infrastructure, resolving 95% of identified gaps within 60 days.
  • Tested logical access controls for over 6,000 users, revoking excessive privileges to mitigate insider threat.
  • Led SOX ITGC audits across financial systems, achieving 100% compliance and eliminating material weaknesses.
  • Facilitated annual ISO 27001 surveillance audits, resolving 22 nonconformities while maintaining certification status.
  • Audited network segmentation controls in PCI environments to verify isolation and prevent lateral movement.
  • Performed systematic control testing across safeguards, validating effectiveness through evidence collection and reviews.
  • Orchestrated complete audit lifecycle from planning through remediation closure, coordinating with auditors and control owners.

Risk & Compliance Analyst

ExcelMindCyber
Dallas, Texas
07.2023 - 06.2024
  • Implemented SOX 404 testing protocols for financial systems, achieving 100% audit pass rates.
  • Co-led GDPR privacy impact assessments for over 20 initiatives, ensuring compliance and avoiding penalties.
  • Executed enterprise-wide risk assessment initiatives, prioritizing remediation efforts based on vulnerability analysis.
  • Performed PCI-DSS gap analysis on payment systems, achieving compliance ahead of external audits.
  • Configured GRC platforms to automate compliance tracking, reducing manual coordination efforts.
  • Coordinated internal audit support, contributing to zero major findings in three consecutive examinations.
  • Delivered monthly risk reporting to leadership, driving 25% faster remediation across portfolios.
  • Authored comprehensive risk treatment plans, translating assessment findings into actionable items for approval.
  • Optimized policy management system housing 500+ documents, ensuring version control, and audit readiness for all inspections.

Risk Management Analyst

Oddity & Aesthetic Innovations LLC
Shreveport, Louisiana
11.2022 - 06.2023
  • Led enterprise-wide GRC platform migrations, integrating risk registers and automating reports, reducing compliance costs by 35%.
  • Developed integrated GRC roadmaps aligning objectives with regulations, enabling 12 clients to surpass 85% maturity scores.
  • Delivered GRC transformation projects under budget for 20 clients, achieving 25% faster ROI through strategic tool selection.
  • Optimized board reporting dashboards visualizing key risks, allowing leaders to prioritize initiatives in 10 engagements.
  • Conducted third-party risk assessments on over 100 vendors, proposing controls that enhanced resilience scores, mitigated disruptions, and improved resilience scores.

Education

Bachelor of Engineering - Computer science and Engineering

Enugu State University of Science &Technology

Master's Program in Cloud Computing - Cloud Computing

SimpliLearn University

Skills

  • Governance, Risk & Compliance (GRC)
  • Policy development and enforcement
  • Cybersecurity standards knowledge
  • Vendor Contract Compliance Review
  • Data Breach Response Coordination
  • Regulatory Metrics Analysis
  • Third-party risk management
  • Data privacy and protection standards
  • Risk Framework Implementation
  • Automated Compliance Monitoring
  • Board-Level Risk Reporting
  • Cross-functional Collaboration

Certification

Certified Information Systems Auditor (CISA)
Certified in Risk and Information Systems Control (CRISC)
Certificate in Prince2 Project management (foundation)

TECHNICAL ACUMEN & FRAMEWORKS

Governance Risk and Compliance (GRC) Software: ServiceNow, RSA Archer, EasyAudit, Workiva, InfraNodes.

Cloud Platforms: AWS, Microsoft Azure.

Network Security: VPN (Connect Tunnel, SonicWall, Windows built-in).

Security Assessment Tools: Nessus, Nmap, Wireshark, Kali Linux, Metasploit, Splunk.

Productivity Tools: Google Suite and Microsoft Office Tools (MS Word, Excel, PowerPoint).

Support Tools: Remote Support (Bomgar, TeamViewer, LogMeIn), Antivirus (Sophos, ESET, Malwarebytes), Ticketing Systems (Ice, BMC Track-It, Smart Service Desk), Active Directory.

Operating Systems: Windows XP, Windows 7, Windows 10, Mac OS, Ubuntu, Android/iOS, Windows Server 2008, Windows Server 2012/2016.

Standards & Frameworks: FedRAMP, FISMA, COBIT, PCI-DSS, NIST RMF/CSF 800-53/2.0, ISO 27001, HIPAA, IT General Controls (ITGC), SSAE18 Attestation, ERP Security Assessments, SOX, GDPR, SOC 2, ITIL, COSO, CCPA.

Quote

Pray Hard! Work Even Harder - Smarter!!!
Olisaemeka Obidi

Work Availability

monday
tuesday
wednesday
thursday
friday
saturday
sunday
morning
afternoon
evening
swipe to browse

Timeline

IT Compliance Auditor

Iron Mountain
05.2024 - Current

Risk & Compliance Analyst

ExcelMindCyber
07.2023 - 06.2024

Risk Management Analyst

Oddity & Aesthetic Innovations LLC
11.2022 - 06.2023

Bachelor of Engineering - Computer science and Engineering

Enugu State University of Science &Technology

Master's Program in Cloud Computing - Cloud Computing

SimpliLearn University
Olisaemeka ObidiIT Risk Analyst