Fadiora O.

Fadiora O. Email and Phone Number

(Manufacturing,Automotive ) GCF Transformation and IT Auditor and GRC and Risk Advisory. @ Brembo North America
Oak Park, MI, US
Fadiora O.'s Location
Oak Park, Michigan, United States, United States
About Fadiora O.

As a GRC and IT Compliance Specialist with years of experience, I deliver end-to-end solutions in cybersecurity, governance, risk management, and compliance. At Brembo North America, I lead initiatives aligning IT environments with global standards, including ISO 27001, SOC 2, SOX, NIST CSF, GDPR, HIPAA, CMMC, PCI-DSS, TISAX, COBIT, and CIS Controls.I manage the entire risk management lifecycle:Risk Identification: Mapping assets, identifying threats, and assessing critical business processes.Risk Assessment: Utilizing RSA Archer and OneTrust for quantitative and qualitative analysis.Risk Mitigation: Implementing access controls, encryption, incident response plans, and BCP/DR frameworks.Monitoring & Reporting: Automating dashboards to deliver actionable KPIs and KRIs for leadership decisions.I also drive third-party and vendor risk management programs:Conducting vendor assessments and audits using ISO 27001, NIST, and GDPR to ensure compliance.Maintaining a centralized third-party risk register to track and prioritize risks.Developing SLAs, remediation plans, and continuous monitoring protocols to mitigate risks throughout the lifecycle.Key AchievementsDesigned and implemented an ISO 27001 compliance program, reducing non-compliance risks by 30%.Established SOX and NIST ITGC controls, improving audit readiness and reducing vulnerabilities by 40%.Led TISAX certification for automotive data protection, enhancing trust with global partners.Automated vendor risk workflows with ServiceNow and OneTrust, cutting response times by 35%.Developed robust incident response plans, reducing security incident downtime by 25%.I combine technical expertise, leadership, and a strategic approach to align IT compliance with business goals. By integrating risk management processes, vendor oversight, and cybersecurity frameworks, I enable organizations to achieve resilience, regulatory compliance, and operational excellence in today’s evolving threat landscape.

Fadiora O.'s Current Company Details
Brembo North America

Brembo North America

View
(Manufacturing,Automotive ) GCF Transformation and IT Auditor and GRC and Risk Advisory.
Oak Park, MI, US
Website:
brembo.com/en/Pages/default.aspx
Employees:
410
Fadiora O. Work Experience Details
  • Brembo North America
    (Manufacturing,Automotive ) Gcf Transformation And It Auditor And Grc And Risk Advisory.
    Brembo North America
    Oak Park, Mi, Us
    View
  • Brembo North America
    (Manufacturing,Automotive ) Gcf Transformation Risk And Compliance
    Brembo North America Feb 2022 - Present
    ISO 27001/27002 Implementation: Designed and implemented a robust ISMS, achieving certification and reducing audit non-conformities by 40%.CIS Controls Alignment: Improved compliance by 30% and enhanced endpoint security through CIS v8 benchmarks.COBIT Framework: Streamlined IT governance practices, increasing risk management efficiency and aligning IT strategy with business goals.SOX 404 Compliance: Conducted ITGC testing, achieving a 100% external audit pass rate across access controls, change management, and operational controls.GDPR Compliance: Developed a data privacy roadmap, embedding GDPR processes, and cutting regulatory risks by 50%.SOC 2 Type II Certification: Directed efforts, reviewing 350+ controls and reducing audit findings by 70%.Third-Party Risk Management: Reduced vendor compliance gaps by 55% using tools like Prevalent and ComplyOne.ISO 27002 Control Enhancements: Updated Annex A controls to address threats, focusing on asset management, access control, and incident response.Cloud Security Frameworks: Strengthened Azure and AWS infrastructures, aligning with ISO 27001 and CIS Controls.Business Continuity Planning: Designed and tested BCP/DRP plans, achieving resilience through live simulations.Core CompetenciesISO 27001/27002 ISMS implementation and maintenance.ITGC testing for SOX 404, including access control and change management.Security policy development aligned with SOC 2, COBIT, GDPR, and CCPA.Risk assessments, mitigation strategies, and IT governance.Data privacy initiatives, including GDPR and CCPA implementation.Vendor risk assessments and compliance management.Security awareness training to foster compliance ownership.
    View
  • Jomar Valve (Manufacturing )
    It Auditor & Risk Advisory
    Jomar Valve (Manufacturing ) Dec 2020 - Jan 2022
    Performed ITGCs and IT Application Controls (ITAC) testing for design appropriateness and operating effectiveness. • Involved in performing technical audits of IT infrastructure controls, including operating systems, databases, network services, IT operations and disaster recovery. • Involved during controls in Access Management, Change Management, SDLC, Business Continuity / Disaster Recovery, and Application controls.• Performed IT infrastructure testing (Databases, Servers, Operating System, Network Devices).• Developed scope statement documentation, drafted Control request form, control design checklist, test scripts, procedure, and performed control reviews to ensure gaps identified are mitigated appropriately.• Conducted risk assessment and evaluation to ensure proper monitoring/identification of high-risk related applications and recommending quality measures to control.• Reviewed and consolidated artifacts developed by different business partners to align with project deliverables and requirements.• Performed Sarbanes-Oxley (SOX) and Service Organization Control (SOC I, II & III testing), review SSAE 18, Review SOC 1 type 2, employing COBIT and COSO frameworks.
  • Webasto Convertibles Usa Inc. (Manufacturing,Automotive )
    Snr It Auditor
    Webasto Convertibles Usa Inc. (Manufacturing,Automotive ) Dec 2017 - Dec 2020
    • Performed risk assessment & RCSA’s to ensure compliance with all IT infrastructures policies & properly identify control deficiencies to mitigate the risk associated with the business process.• Experienced performing compliance on all Data privacy activities such as Data privacy program metrics validation, Privacy program charter review, DP awareness activities, DP incidence response, DP compliance requirements & impact evaluation, 3rd party privacy contract clauses verification, DP inventory assessment/DPIA, Data privacy business processes identification & DP inventory data quality review. • Performed Compliance reviews/approvals, least privileges, access provisioning & de-provisioning, IRM activity tracking, and Risk management of assigned Business Unit i.e. (Procurement & Power & Pipeline) in compliance with organizational procedures and recommended regulatory framework. • Involved actively in oversight and review of different applications to ensure risk compliance with both regulatory and company standards. • Acted as a dedicated subject matter expert in coordinating audit engagement, building organizational capability, remediation process, and risk-based approach.• Involved in SOX control testing and implementation over financial reporting: Sarbanes Oxley Act (SOX), performs Walkthroughs of controls and evaluates operating effectiveness of controls for assigned line of Business.
  • Pkf The Consulting House (Consulting & Finance)
    It Auditor & Risk Advisory
    Pkf The Consulting House (Consulting & Finance) Jul 2013 - Jan 2016
    •Identified control gaps, audit acceptance/Exceptions and made recommendations for process improvement.• Defined and analyzed project domain deliverables and documentation of identified risk on the project implementation plan. Engaged in developing and creating risk management procedures and policies for different domain.• Ensured Data privacy regulations and business procedures were reviewed and performed risk assessments as required for the second line of defense. • Assisted in Monitoring all external web sites to ensure that no company generated, or related confidential, confidential restricted access, classified information or sensitive personal data was posted without prior approval from legal. • Participated in the review of management's work, assessing the operating effectiveness of the SLDC lifecycle, identifying risks and gaps in the implementations, communicating issues and recommendations to the parties involved.• Involved during controls in Access Management, Change Management, IT operations, SDLC, Business Continuity / Disaster Recovery, and Application-level controls.• Reviewed & challenged audit work papers, Audit findings, test procedures, audit results, corrective action plans, control design implementation & recommendations.
  • Vas Consulting
    It Operational Risk Analyst
    Vas Consulting Jun 2013 - Aug 2014
    • Engaged in controls risk assessments across business processes including risk and gap identification, risk identification, evaluation, development, control matrix, and design.• Performed testing for operational effectiveness and ensure key controls are compliance to test strategies/approaches• Conducted risk evaluation by examining related risks and key controls and developing appropriate audit measures to test the control identified. • Performed oversight and challenged the First line of defense across all operational risk routines including – To plan, identifying and assess, control, mitigate, test, validate, monitor, and report.• Designed and developed the most complex testing strategies, methodologies, and analyses; evaluates the adequacy and effectiveness of policies, procedures, processes, systems, and internal controls.• Design, implement, and oversee the execution of the IT controls program including periodic control testing of design and operation effectiveness sufficient to meet regulatory requirements and to satisfaction of internal/external auditors.• Solely responsible for identifying risks, controls, root cause analysis, process improvement, and engaging with the business units assigned to assist with process mapping, Risk control self-assessment, Transactional testing, issue management, control testing, and Risk Assessment reporting.

Fadiora O. Education Details

  • Ajayi Crowther University
    Ajayi Crowther University
    Computer Science

Frequently Asked Questions about Fadiora O.

What company does Fadiora O. work for?

Fadiora O. works for Brembo North America

What is Fadiora O.'s role at the current company?

Fadiora O.'s current role is (Manufacturing,Automotive ) GCF Transformation and IT Auditor and GRC and Risk Advisory..

What schools did Fadiora O. attend?

Fadiora O. attended Ajayi Crowther University.

Free Chrome Extension

Find emails, phones & company data instantly

Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Get Chrome Extension - Free

Aero Online

Your AI prospecting assistant

Download 750 million emails and 100 million phone numbers

Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.