Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil

Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil Email and Phone Number

Cloud & Enterprise Security Practitioner | I help FTSE100 companies protect themselves from IT related risk @ The Security Bench
Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil's Location
Greater Toronto Area, Canada, Canada
About Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil

Agile, results-oriented leader with 20+ years of professional experience in providing enterprise IT governance and risk management services to a global portfolio of clients, across banking and capital markets, the public sector, and health care. My expertise extends to cloud security, information assurance, data privacy, Identity, and Access Management. I am an adept technology risk analyst who has exposure across all stages of the risk management lifecycle. Experienced in Industry Standard Frameworks (inc. NIST series, ISO, CSA, ITIL, ITSG-33, COBIT, ISO27001, PCI-DSS, PIPEDA) and project coordination across IT operations, governance, and risk/compliance. I provide my clients with subject matter expertise in the assessment, transformation, and securitization of leading enterprise technologies in cloud transformation and governance. Currently, I am a Cloud Security Practitioner supporting the cloud-first transformation strategy of the Government of Canada with various departments in a consulting capacity. In addition to my experience, I hold an MBA from Edinburgh Napier University, specializing in Information Systems Strategy and Governance, a certificate in Cloud & DevOps Transformation program from MIT, and a Bachelor (BSc Hons) in Computer Science from Obafemi Awolowo University.My Core Technical Capabilities Include: - Cloud Transformation- DevSecOps- Application Security- Identity and Access Management- Cybersecurity- Data Governance- Process Transformation- Enterprise Technology Management- Risk Strategy- Business Analysis.

Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil's Current Company Details
The Security Bench

The Security Bench

View
Cloud & Enterprise Security Practitioner | I help FTSE100 companies protect themselves from IT related risk
Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil Work Experience Details
  • The Security Bench
    Chief Research Officer (Cro)
    The Security Bench Sep 2023 - Present
    Greater Toronto Area, Canada
    The Security Bench (TSB) serves as a central hub for insights, technologies, and strategies in Information Security. This platform offers a wealth of content covering various aspects of Information Security, including but not limited to Application Security, Artificial Intelligence (AI), Customer and Enterprise Identity and Access Management (IAM), Cloud Security, Incident Response, Governance and Risk Compliance, Business Continuity, Disaster Recovery, and much more. TSB is a trusted resource for staying updated on industry insights, news, trends, articles, interviews, webinars, and podcasts related to Information Security.As the Chief Research Officer, I leverage my extensive industry experience to write about the latest events by publishing blogs, articles, and webinars. I collaborate with clients as part of a team to define requirements, develop and assist organizations in identifying vulnerabilities in their cybersecurity architecture, meet compliance requirements, and produce the necessary documentation. Furthermore, I engage in research activities to enhance the automation, accuracy, and efficiency of detection techniques and associated systems to help organizations bolster their security. My specialization involves creating, developing, integrating, and deploying cutting-edge tools, methodologies, and systems that support cyber operations and other intelligence-related endeavors.
    View
  • Government Of Canada
    Cloud / Information Security Practitioner
    Government Of Canada Jun 2021 - Present
    The Government of Canada (GC) - IT Security is responsible for providing the security risk management procedures and policies to ensure adequate protection of data that is stored/processed on the cloud. In this team, I utilized my subject matter expertise in IT security to assess security controls and perform risk assessments for applications, including those being migrated to the cloud. This involved collaborating with application / DevOps teams to review any architecture and solution design documentation, to identify, quantify and mitigate potential risks. Additionally, I worked with multiple stakeholders across the business relating to security categorization (e.g. confidentiality, integrity, and availability) to ensure the appropriate selection of security controls that are aligned with GC policiesI led the review and validation of security architecture principles in multiple security domains including, cloud security, application security, data protection, network security, Identity and Access Management (IAM), and governance.
    View
  • Walmart Canada
    Senior Risk Analyst, Vulnerability Management & Compliance
    Walmart Canada Jan 2021 - Jun 2021
    Walmart is the largest retail chain in the world, as a Senior Risk Analyst, I was responsible for managing and mitigating Walmarts information security vulnerabilities. This included performing continuous monitoring, prioritization, and reporting of vulnerabilities throughout on-premise and cloud-based environments across the Walmart operating model. I was also responsible for ensuring Walmart met regulatory compliance procedures, for example, preparing for the annual NIST CSF Compliance Assessment for Walmart Canada and leading the PCI-DSS Audit for Walmart Canada in 2021
    View
  • Lifelabs Medical Laboratory Services
    Senior Security Advisor, Risk And Governance
    Lifelabs Medical Laboratory Services Jun 2020 - Dec 2020
    LifeLabs is a leading provider of laboratory testing and management services, contributing to the treatment and prevention of disease by enabling healthcare providers to operate more efficiently and effectively. I was employed as a Senior Security Advisor in their Risk and Governance division, where I supported the delivery of their information security roadmap. This involved conducting cloud service security reviews to ensure alignment with industry best practices and the definement of security controls required for the service to operate in a safe and controlled environmentMy role was multi-faceted, including working with the Project Management Office (PMO), Procurement, and Privacy to perform Supply Chain Security assessments on vendors and partners. I deployed my subject matter expertise in the areas of data privacy to prepare Privacy Impact Assessments, and ensured applications are developed following Information Privacy regulatory and Government compliance requirements that are applicable for the correct Jurisdictions.
    View
  • Scotiabank
    Senior Cloud Security Advisor
    Scotiabank Aug 2019 - Jun 2020
    Toronto, Ontario, Canada
    Scotiabank is a Canadian multinational banking and financial services company headquartered in Toronto, Ontario and is one of Canada's Big Five banks, it is the third-largest Canadian bank by deposits and market capitalization.I was employed as a Senior Information Security Advisor, providing advisory services to CAMS (Customer Authentication Management Services), the bank’s in-grown custom solutions for centralized authentication for all channels. In this role, I conducted TRA on all applications, and APIs being developed and deployed by CAMS using CI/CD and Agile methodologies. I guided the design, development and implementation of sound risk management controls that met the Bank's industry standards that are compliant with local and global regulators. I collaborated with Authentication Engineers to review architectural designs and data flows for internal and external interfaces for safeguards and necessary security controls across various platforms (inc. Mobile, on-prem, in-cloud). Led security due-diligence reviews over third party services providers to determine if implemented, the security and privacy control practices align with the Bank and industry best practices
    View
  • Department Of National Defence
    Security Consultant
    Department Of National Defence Jan 2019 - Jul 2019
    Canada
    Security contractor who conducted and managed IT Security SA&A assessments including, threat risk assessments (TRA), vulnerabilities assessments (VA), privacy impact assessments (PIA), and business impact assessments (BIA) on DRMIS (Custom SAP Defense ERP). Reviewed and made recommendations relating to the IT security posture of the enterprise application systems for priority security control topics, assessing the compliance with applicable (DND) security frameworks (ITSG-33), policies and standards, and preparation for audit readiness
    View
  • Td
    Senior Information Security Consultant
    Td May 2018 - Jan 2019
    Toronto, Canada Area
    Worked with TRMIS - GIAM on the assessment of Access Management Operations (IAM): Process Efficiency &, Automation Worked with LOB Heads and their assigned SMEs to discover and understand business and technical process gaps in various applications Performed risk assessments on identified processes within the confines of compliance and regulatory controls (bank-wise and industry standards)Presented high-level findings in terms of gaps, pain points, and opportunities to Senior management and Stakeholders for feedback and approval for granular details (if required)Deep Dived into approved use cases for automation
    View
  • Cibc
    Information Security Consultant
    Cibc Nov 2017 - May 2018
    Toronto, Canada Area
    The Canadian Imperial Bank of Commerce is a Canadian multinational banking and financial services corporation headquartered at CIBC Square in the Financial District of Toronto, Ontario. As an Information Security Consultant, I supported senior management on strategically relevant projects on information technology and security. This included identifying the needs of stakeholders and contributing to governance initiatives in the development of CIBC policies, standards, and procedures whilst also recommending necessary changes to enhance information systems security. I was a key point of contact in the preparation of privacy assurance, threat, and risk assessment activities and examined and interpreted requirements documents, architecture diagrams, and verbal information to determine if a project presents a security risk to CIBC. I analyzed the appropriateness of privileged access of user accounts on various technology platforms; identified access remediation as required by CIBC's Logical Access Control standard and considered best practices, operational risks, and business needs of the groups.
    View
  • Ibm
    It Consultant
    Ibm Mar 2013 - May 2017
    Canada
    Assigned to strategically important accounts (e.g. IBM Canada) in the hosted portfolio team, also provided support to senior consultants when required. In this role, I performed annual audits and health checks on managed accounts for supported applications to ensure continuous compliance with regulatory standards. I acted as an SME across core functional areas, including portfolio, program, project security assessments, audits, credential management, access provisioning, authentication and authorization, application security, data security, privacy, and security monitoring in alignment with IBM compliance.Responsible for reviewing the Hardware and Software configuration of major IT Infrastructure (Operating Systems, Databases, network devices) against defined security baselines. This was achieved by working with IBM's global BCRS unit to implement mandatory disaster recovery and other business continuity proof of concept plans as outlined in the service level requirement.
    View
  • Rbc
    It Consultant, Db Systems
    Rbc May 2012 - Feb 2013
    Advanced technical systems analyst who was responsible for documenting and testing the security control framework. Involved in the analysis and review of IT security recommendations whilst implementing appropriate database encryption controls based on the data classification level. Produced exposure and remediation plans and maintained up-to-date security inventory database records and artefacts for the platform, hardware, software version, and security patch-level for in-place RDBMS instances.
    View
  • Ibm
    It Consultant
    Ibm Apr 2005 - Mar 2012
    Provided thorough documentation and automation of global security checks and compliance with scripts to support clients in identifying IA vulnerabilities and helping with risk mitigation responses. This included producing monthly analytics metrics/dashboarding as well as variance reports/incidents. Participated in security and compliance audits (internal and external) and reviewed the global security settings and IT controls on assigned accountsLiaised often with IBM’s global BCRS unit to implement mandatory disaster recovery and other business continuity plans based on outlined objectives by senior management. I transformed multiple operational processes to ensure the client's operating standards meet business service level agreements.
    View
  • Hsbc Retail Banking And Wealth Management
    Manager, Database Services
    Hsbc Retail Banking And Wealth Management Nov 2003 - Feb 2005
    Toronto, Canada Area
    Responsible for performing Security analysis on internal and external solutions and documenting/quantifying risk to ensure the bank IT risk was aligned to internal policy. Heavily involved in the hiring process of necessary personnel to fulfil the objectives of the project, whilst also actively mentoring and managing developers in my team.
    View
  • Sanchez Computer Associates
    Senior Database Administrator
    Sanchez Computer Associates Aug 2001 - Jul 2003
    Toronto, Canada Area
    Primary responsibility for all in-house databases management (Oracle, SQLServer, Sybase) and providing backup/recovery services to maintain a high availability and disaster recovery. In addition to my current services, I participated in and provided leadership in the analysis and application of all technologies embraced by the DB environment including infrastructure, tools & data management processes
    View
  • The Critical Path Company
    Database Administrator
    The Critical Path Company Oct 1999 - Jul 2001
    Toronto, Canada Area
    General administration role responsible for developing, documenting and enforcing database procedures, mainly for knowledge transfer purposes. Performed additional database maintenance and provide additional service by working out-of-hours when required.

Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil Education Details

Frequently Asked Questions about Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil

What company does Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil work for?

Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil works for The Security Bench

What is Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil's role at the current company?

Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil's current role is Cloud & Enterprise Security Practitioner | I help FTSE100 companies protect themselves from IT related risk.

What schools did Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil attend?

Duronke Owoleso, Mba, Cissp, Cisa, Cdpse, Pmp, Itil attended Mit Professional Education, Edinburgh Napier University, Obafemi Awolowo University.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.