Tope Ezeino

• Lead the design and implementation of security controls in CI/CD pipelines, reducing vulnerabilities.
• Maintained and created documentation to help grow the security team’s performance.
• Conduct threat modeling sessions to identify and mitigate security risks in critical applications.
• Collaborate with development and operations teams to integrate security practices seamlessly into the software development lifecycle.
• Implement automated security testing processes, resulting in a 55% reduction in time-to-detect vulnerabilities.
• Manage and optimize cloud security configurations in AWS, GCP and Azure ensuring compliance with industry leading practices.
• Cloud Provider Security Integration: Understand and leverage security features provided by the cloud service provider. Ensure that the organization utilizes the provider's security tools effectively.
• Provided technical leadership and delivered innovative products and services to address customer specific requirements.
• Partnered with infrastructure teams on evaluation and feasibility assessments of new systems and technologies.
• Identified, analyzed and resolved infrastructure vulnerabilities and application deployment issues.
• Reviewed existing systems and made recommendations for improvements.
• Worked with cloud architect to generate assessments and develop and implement actionable recommendations based on results and reviews.
• Worked with teams of talented software engineers to define, build and maintain cloud infrastructure.
• Utilized code and modern cloud-native deployment techniques to design, plan and integrate cloud computing and virtualization systems.
• Created frameworks by designing and developing technical solutions.
• Performed network troubleshooting to isolate and diagnose common problems.
• Worked with business partners to balance requirements, security and risk reduction.
• Liaised with third parties to respond to security events and understand threat landscape.
• Created policies and procedures for emerging security technologies and proposals.
• Translated strategy into solutions and operating models by leading or managing others,
• Used metrics to monitor application and infrastructure performance.

• · Vulnerability Management: Regularly scan and assess the cloud infrastructure for vulnerabilities. Implement patch management processes to address identified vulnerabilities promptly including SAST and DAST scans.
• Network configuration: Implement and manage network security controls, such as firewalls, intrusion detection/prevention systems, and secure network configurations. Also worked with my team on setting up VPCs/Accounts per business applications while ensuring adequate Network segmentation, adequate logical separation, and secure internet access for servers in the private subnets using NAT gateways, proxies or VPC endpoints.
• Cybersecurity Program Assessments: Performed security program assessments for multiple firms with a focus on AWS cloud security architecture, reviewing information security policies and procedures, and providing a strategic security roadmap prioritized based on both business objectives and organizational risk using AWS Developer Guide and AWS CIS Benchmark. Oversee the implementation of encryption mechanisms to protect data both in transit and at rest within the cloud environment.
• Configuration Management: Created and developed Terraform and CloudFormation templates for cloud infrastructure deployment for a large financial institution. Continuous task to continuously improve speed, efficiency, and scalability of the systems automation, as well as working across functions (development/testing, deployment, systems/infrastructure) and project teams to ensure continuous delivery of value.
• Audit Support: Provided subject matter support on IT and Security audits for various clients covering topics such as AWS configuration and identity and access management. Provided support in all audit phases including assistance with developing audit programs, leading walkthrough meetings, performing detailed configuration reviews, and assessment of findings based on organizational risk.
• Continuous Improvement: helps design and implement ways to stay current with industry trends, emerging threats, and new security technologies. Continuously improve and update security measures in response to changing landscapes
• Incident Response: Develop and maintain an incident response plan for cloud security incidents. Respond to security incidents promptly, investigate and implement corrective actions.
• Security Monitoring and Logging: Implement monitoring tools to continuously monitor the cloud infrastructure for suspicious activities. Maintain logs for analysis and auditing purposes.
• Recommended technology upgrades to improve client security.
• Collaborated with stakeholders to transform client requirements into turnkey solutions.
• Authored best practices documentation for use in new personnel onboarding processes.
• Investigated system issues and implemented resolutions to reduce downtime.
• Presented business leaders with ROI estimations to drive project planning.
• Re-engineered existing computer systems to promote ease-of-use and improve system security.
• Enhanced project management skills by defining and presenting system solutions and timelines for business needs or technical problems.
• Oversaw document development across project workstreams to create internal control statements per compliance and regulatory standards.
• Analyzed existing systems and databases and recommended enhancements to solve business needs
• Performed internal system acceptance to deliver well-tested enhancements and meet business requirements.
• Communicated and explained business requirements to team members to understand and implement functional demands.
• Collaborated with upper management to drive strategy and implement new processes.
• Analyzed client business processes to propose optimal software applications for unique requirements.

● Design, deploy and monitor infrastructure in public clouds (AWS, Azure and GCP).

● Work with a team to build a solution to ingest, analyze and visualize syslog log messages and metadata in near-Realtime using Kinesis agent, Kinesis Analytics/Firehose, Elasticsearch and Kibana on AWS.

● Set up VPCs/Accounts per business applications while ensuring adequate Network segmentation, adequate logical separation, and secure internet access for servers in the private subnets using NAT gateways, proxies or VPC endpoints.

● Develop and maintain scalable, fault tolerant container orchestration platform using Kubernetes to orchestrate docker containers running java Spring Boot applications on Amazon Web Services

● Design and implement a serverless framework to support a learning management system hosted on AWS using DynamoDB, AWS Lambda, API Gateway, s3 bucket and CloudFront.

● Install and Setup Web, Application and Database Servers in a secure tiered manner (Apache and DB server MySQL).

● Automate the build, deployment, and testing of code though CI/CD pipelines using Jenkins, Ansible, Nexus.

● Used Jenkins to build cloud infrastructure with CloudFormation and terraform. Set up ansible controller for remote servers.

● Creating and developing Terraform and CloudFormation templates for cloud infrastructure deployment.

● Design and implement Amazon AWS infrastructures and services (EC2, ELB VPC, S3, CloudFront, IAM, SNS, RDS, KMS, Data Pipeline and CloudWatch)

● Develop plans to reduce on-prem database, while implementing cloud strategies and helping move workloads into the target cloud environment.

● Develop solutions and standards for AWS database back-up, restoration, replication, high availability, disaster recovery, encryption, security, and auditing.

● Contribute to and support the adoption of the DevOps methodology and Agile project management with applied skills in scripting using Bash, Python and using DevOps tools like Git, Maven/Nexus and Jenkins.

● Participate in deep architectural discussions to ensure solutions are designed for successful deployment, security, cost effectiveness and high availability in the cloud.

● Practical knowledge of networking and internet protocols, including TCP/IP, DNS, SMTP, HTTP, distributed networks, etc.

● Propose, develop and support automation solutions for source code deployment and configuration management, using configuration management tools like Jenkins.

● Continuous task to continuously improve speed, efficiency, and scalability of the systems automation, as well as working across functions (development/testing, deployment, systems/infrastructure) and project teams to ensure continuous delivery of value.

• Provided technical leadership and delivered innovative products and services to address customer specific requirements.
• Understood client needs and objectives by conducting proactive customer and data analysis.
• Provided 2nd and 3rd level technical support and troubleshooting to internal and external clients.
• Oversaw development and maintenance of organization computer systems and intranet.
• Monitored and tested application performance to identify potential bottlenecks, develop solutions and collaborate with developers on solution implementation.
• Managed installation, upgrade and deployment projects and provided on-site direction for network engineers.
• Wrote and maintained custom scripts to increase system efficiency and performance time.
• Participated in system development life cycle from requirements analysis through system implementation.
• Worked with teams of talented software engineers to define, build and maintain cloud infrastructure.
• Reviewed existing systems and made recommendations for improvements.

• Monitored computer virus reports to determine when to update virus protection systems.
• Monitored use of data files and regulated access to protect secure information.
• Evaluate risk, document processes and systems in flowchart and narrative form and design audit programs.
• Cash control officer
• Credit control officer
• Prepare daily and monthly financial report.
• Confirm and approve cash and credit collection for the day.
• Prepare daily and monthly financial books.
• Prepare marketers performance analysis.