Saheed Shittu. Cism,Cisa,Ccna,Cissp Email & Phone Number

Cypress, TX, US

Houston, Texas, United States

• Led the development of security governance, policies, and procedures to safeguard sensitive data, ensuring compliance with regulatory requirements.
• Managed the assessment and mitigation of risks organization-wide, conducting thorough risk assessments, identifying gaps, and devising effective mitigation plans.
• Oversaw the execution of audits, assessments, and compliance activities to validate adherence to standards.
• Act as a liaison with external auditors, regulators, and stakeholders on GRC-related matters.
• Develop and maintain key performance indicators (KPIs) and metrics to measure the effectiveness of GRC initiatives.
• Oversee the execution of audits, assessments, and compliance activities to validate adherence to compliance standards.

Houston, Texas, United States

• Act as the Global Single Point of Contact (SPOC) for IT audit activities and coordination between MRC Global and third-party auditors.
• Performs third-party Vendor security risk assessments, as required to support governance efforts.
• Conduct security risk assessments and facilitates review of cloud and hybrid cloud security Posture.
• Conduct security awareness training for all employees and create simulated phishing test to detect the effectiveness of the program.
• Develops learning and awareness programs to cultivate a culture of cybersecurity within an organization.
• Develop metrics to assess the effectiveness and impact of Security Awareness & Communications initiatives and tools.

• Managed end-to-end IT audits, including planning, scoping, fieldwork, testing, analysis, and final audit report preparation.
• Developed tailored control matrices for client applications during audit planning phases.
• Supported GRC team in updating governance policies across diverse platforms.
• Conducted walkthroughs and testing of IT General Controls for financially critical systems.
• Evaluated IT General Controls (ITGC) for design and effectiveness, analyzing findings related to change management, IT operations, and access controls.
• Implemented risk-based approaches to ITGC, identifying and managing control risks.

Lagos, Nigeria

• Performed special audits and assignments as required, assisting corporate auditors and audit managers in working with both their internal and external audits.
• Supported Audit Associates and Seniors in the identification of key risk areas by performing process work through and flowcharting of controls.
• Reviewed contracts for compliance and privacy-related issues.
• Wrote and presented reports outlining findings and recommendations from compliance audits.
• Identified potential areas of compliance vulnerability and risk to develop and implement corrective action plans.
• Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine.