ISMS Manager | PCI QSA

• Sep 2022 - Present

Senior Consultant (PFI)

• Mar 2020 - Present

• Spearheads cybersecurity assessments for Banks, FinTech’s, OFIs (Other Financial Institutions), and various institutions across the globe.• Determines applicable in-scope requirements for clients' Cardholder Data Environment (CDE).• Determines the effectiveness of compensating controls.• Provides recommendations for institutions to ensure PCI (Payment Card Industry) controls, requirements and standards are in place and are working as intended.• Prepares and ensures timely delivery of CoC, ROC, AOC, and SAQ.• Leads, implements, and provides insight, and recommendations towards hardening of clients' controls, processes, and technologies against emerging threats across diverse regulatory requirements and expectations (Cybersecurity, Cloud Security, PCI DSS, ISO 27001, ISO 22301, ISO 27032, ISO 20022, etc.).• Supports clients and institutions with recommendations on effective closure/mitigation of identified gaps, non-conformities, red flags, and potential points of compromise during assessments.• Ensures evidence types and documents reviewed during assessments are securely accessed with adequate access controls in place.• Regularly updates forensic skill-set with emerging global demands and requirements.• Assists institutions in understanding the controls, requirements, technical/logical handshakes, and dependencies between their people, processes, and technologies.

SENIOR FRAUD ANALYST

• Jun 2015 - Aug 2019

• Watchlisted BVNs (Bank Verification Numbers) linked with financial fraud. • Monitored and analyzed transactions across all e-Payment channels. • Investigated and escalated transactions with suspicious payment history to Banks and OFIs (Other Financial Institutions). • Generated and analyzed Banks and OFIs (Other Financial Institutions) reported fraud data for emerging schemes. • Examined and identified indicators of merchant connivance with fraudsters. • Shared fraudulent transaction data with law-enforcement agencies. • Provided near-real-time restriction of phone numbers enrolled for USSD (Unstructured Supplementary Service Data) financial fraud. • Enrolled Banks and OFIs (Other Financial Institutions) on the Industry Anti-Fraud Portal. • Handled database analytics and queries for monthly, quarterly, and annual Industry Fraud Landscape publications. • Facilitated boot camps for Banks and OFIs (Other Financial Institutions) on fraud detection, prevention, and control. • Detected e-payments frauds for timely recovery and funds salvage. • Spearheaded delisting BVNs exonerated from financial fraud as requested by the CBN (Central Bank of Nigeria). • Monitored global fraud trends and implemented required rules for fraud detection.

INFORMATION SYSTEMS SECURITY ANALYST

• 2013 - 2015

• Coordinated the generation of Bank's cryptographic keys for card-data encryption.• Supported Banks and OFIs (Other Financial Institutions) in routing transactions to a central anti-fraud solution.• Monitored and tuned IDS (Intrusion Detection System) and IPS (Intrusion Prevention System) security devices for optimum efficiency.• Spearheaded threats and vulnerability analysis on enterprise-critical devices.• Instrumental in user creation, deletion, and termination on logical access controls.• Performed database queries for monthly and annual fraud landscape publications.• Prepared and implemented standards required for ISO-27001, ISO-22301, and PCI-DSS certifications.• Managed and archived surveillance camera footage for investigations.• Spearheded security awareness programs delivered to internal/external customers.• Coordinated security guards and reviewed daily physical control logs and reports.• Spearheaded enterprise surveillance audits, certification, and re-certification exercise.• Managed and operated enterprise HSM (Hardware Security Module).

MANAGEMENT TRAINEE

• Feb 2012 - Jun 2013

• Spearheded server data back-ups in-view of business continuity plan (BCP) and disaster recovery (DR)• Spearheaded daily capture of payment instruments• Operated and maintained the MICR (Magnetic Ink Character Recognition) machine used for clearing instruments. • Generated and uploaded daily Net Settlement Files (NSF) for CBN (Central Bank of Nigeria) review• Analysed and reported daily and monthly instruments volume and value.• Conducted surveillance on required network connectivity for POS (Point of Sale) adoption in SE (South East)• Played an active role in sensitizing merchants for POS (Point of Sale) adoption in SE (South East)• Spearheded branch operation expense records and reports.

SYSTEM ANALYST II

• Jun 2009 - Feb 2012

• Spearheded university payroll server audits • Designed and implemented directorate of internal audit network layout architecture. • Performed audit of university units, faculties, colleges, schools and departments • Configured and installed applications for directorate of internal audit system efficiency • Analysed and reported audit findings for management review • Pivotal in routine system back-ups for business continuity planning (BCP) • Spearheded routine maintenance of directorate of internal audit computer systems