• Work on standards and framework, and to drive the implementation and organizational awareness to support IT Governance, Risk & Compliance (GRC) objectives.• Support initiatives to assess the adequacy and effectiveness of IT controls and policies, and direct remediation activities to ensure that compliance gaps are successfully addressed.• Manage and ensure IT policies and procedures up to date across the organization, working with the appropriate stakeholders.• Develop, maintain, review and report on the IT Risk Register. Schedule and participate in periodic risk self-assessments and track remediation action plans.• Consolidate IT incidents and conduct root cause analysis.• .Drive continuous improvement based on expert knowledge in domain areas, industry best practices, established market standards and certifications, and business objectives.• Point of contact to assist and advise on Information Security related matters• Develop and deliver training programs to raise awareness of security risks and compliance requirements among employees.• Support business continuity functions. E.g. tabletop exercise, disaster recovery exercise◼ ACCOMPLISHMENTSConducting IT security awareness training and tabletop exercises is crucial for preparing employees to respond effectively to cyber threats. Your efforts have resulted in a significant reduction in phishing attack susceptibility by 14%.

Spearheading the development and implementation of the Information Security Management System (ISMS) framework, aligning it with industry best practices and ISO 27001:2022 standards.Collaborating with cross-functional teams to create and update ISMS policies, procedures, and guidelines to ensure compliance and data protection.Adopting Canter for Internet Security (CIS) policies for hardening servers/systems/networks is a prudent step toward enhancing cybersecurity. Taking a lead role in information security, identifying and addressing challenges, and managing associated risks.Reviewing policies and procedures and, carrying out data protection impact assessments and information security accreditation of new solutions.Evaluating risks, understanding control, and developing governance processes to support the company.Engaging in articulating issues, developing consensus, raising awareness, and providing and implementing solutions.Effective communication and a clear demonstration of the value that IT security brings to the overall business strategy will help in gaining senior management support.Essayed a stellar role in the implementation of BCP and DRDelivered Security Awareness Training to all employees.Stay up to date with current security vulnerabilities and attack vectors. Upgrading security systems by monitoring the security environment, identifying security gaps, and evaluating and implementing enhancements.◼ ACCOMPLISHMENTS Conducting IT security awareness training and tabletop exercises is crucial for preparing employees to respond effectively to cyber threats. Your efforts have resulted in a significant reduction in phishing attack susceptibility by 14%.

Led and managed the IT team, including hiring, training, and performance evaluations, to maintain a skilled and motivated IT workforce.Oversee the design, deployment, and deployment, and maintenance of the network infrastructure including routers, switches, firewalls, and wireless access points, to ensure optimal performance and security. Ensure related infrastructure to provide uninterrupted internet and in-house web applications. Advise, administer, and maintain proper security group structure for managing end-user accounts, permissions, and access rights.Administering firewall rules (Sophos XG-330) and security patch management as well as robust access control lists (ACLs) to regulate user permissions and enforce the principle of least privilege.Stay informed about emerging technologies and assess their suitability for the organization. recommend upgrades or replacements of outdated systems.Prepare and manage the IT budget, ensuring cost-effective technology solutions and responsible for the allocation of resourcesProvide technical support to the stakeholders addressing hardware and software issues promptly and effectively to minimize the disruptions.

Server: Windows 2013 Client: Windows: 7 | LAN, WAN & WIFI ManagementResponsible for day-to-day operations and administration of the IT infrastructure. Server maintenance, network configuration, and user management. Render maintenance, configuration, and reliable IT operations.Monitoring system performance and health, reporting anomalies or issues, and learning to optimize system resources.Assisting in the creation, modification, and deletion of user accounts, permissions, and access control management.Assisting in software updates, patches, and upgrades under the guidance of senior administrators to keep systems secure. Assisting in the implementation and testing of backup solutions to ensure data integrity and recovery capabilities.

Shopping Cart - Web Application. Software: Java and Flex Transitioning from Flash to FlexUpgraded the Flash site to a Flex environmentWebsite : (www.twoscompany.com).