Summary
Overview
Work History
Education
Skills
Accomplishments
Certification
ADDITIONAL INFORMATION
Languages
Timeline
Generic

OLUWAMI A. TIFSE

Elkridge

Summary

Dynamic professional with a strong foundation in operational security and growing expertise in governance, risk, and compliance. Extensive hands-on experience in incident response, vulnerability analysis, and compliance documentation within fast-paced environments. Proven ability to translate complex technical security activities into structured, audit-ready evidence that aligns with NIST and industry standards. Committed to enhancing organizational security posture through meticulous documentation, risk-based decision-making, and effective control execution. Aiming to contribute a unique blend of security operations experience and GRC capabilities to foster secure, compliant, and resilient environments.

Overview

8
8
years of professional experience
1
1
Certification

Work History

System Analyst

Cyte llc
2023.12 - Current
  • Control Assessment & Evidence Support: Assisted in SOC 2 and NIST-aligned control reviews by gathering evidence, validating configurations, and documenting compliance gaps.
  • Risk & Vulnerability Analysis: Analyzed vulnerability scan results, reviewed CVEs, and supported remediation planning with IT stakeholders.
  • Policy & Documentation Development: Contributed to updates on security policies, SOPs, and audit-ready documentation including SOC 2 evidence logs and GDPR-related artifacts.
  • Compliance Reporting & Metrics: Assisted in generating compliance reports, tracking KPIs, and preparing summaries for leadership and audit teams.

Security Analyst Intern

Vobalink inc.
2022.04 - 2022.10
  • IOC Enrichment & Threat Validation: Investigated phishing attempts, enriched indicators using OSINT tools, and validated malicious domains, IPs, and file hashes to support threat identification.
  • Threat Pattern & Event Correlation: Analyzed logs and correlated alerts across endpoints, firewalls, and network traffic to identify patterns aligned with known TTPs.
  • Vulnerability Intelligence Support: Reviewed vulnerability scan results, analyzed CVEs, and assessed potential exploitation paths to support risk prioritization.
  • Intelligence Reporting & Documentation: Drafted incident summaries, threat findings, and intelligence notes to support leadership visibility and operational decision-making.
  • Adversary Behavior Analysis: Researched suspicious activity, mapped behaviors to MITRE ATT&CK techniques, and identified potential threat actor indicators.

Cybersecurity Support Technician

Alpha Technology Group
2018.05 - 2020.10
  • Identity & Access Intelligence: Managed user access and authentication policies in Active Directory/Azure AD, identifying suspicious login patterns and access anomalies.
  • Exposure & Configuration Analysis: Supported patching, configuration updates, and endpoint hardening to reduce exposure to known threats and misconfigurations.
  • Endpoint & Network Security Insights: Troubleshot endpoint and network issues while assessing potential security implications and documenting threat-related observations.

Education

Master of Science - Cybersecurity And Information Assurance

Western Governors University
Salt Lake City, UT
2026-10

Bachelor of Science - Hospitality And Tourism Management

Yaba College of Technology
Lagos, NG
2019-09

Skills

  • Governance, Risk & Compliance (GRC): Skilled in supporting SOC 2, GDPR, ISO 27001, PCI DSS, and NIST-aligned governance activities, including control assessments, evidence collection, audit readiness, and compliance documentation
  • Security Operations & Analysis: Hands-on experience with phishing analysis, email threat triage, event correlation, IOC validation, and incident documentation using Microsoft Defender, ServiceNow, and OSINT tools
  • AI Governance & Responsible Use: Familiar with emerging AI governance principles, risk assessment for AI-enabled systems, data protection considerations, and alignment with regulatory expectations for responsible AI adoption
  • Cloud Security & Compliance: Understanding cloud security fundamentals (Azure, AWS), shared responsibility models, cloud access controls, and compliance alignment for cloud-hosted environments
  • Risk Identification & Mitigation: Ability to evaluate vulnerabilities, assess risks, map controls to frameworks, and support remediation planning across technical and administrative domains
  • Policy, Controls & Documentation Excellence: Strong capability in drafting, updating, and maintaining security policies, SOPs, RoPAs, DPIAs, SOC 2 evidence logs, and audit-ready documentation with clarity and precision
  • Cross-Functional Collaboration: Worked with engineering, IT, and compliance teams to align technical activity with governance and regulatory expectations

Accomplishments

  • Analyzed system performance and compliance workflows, recommending process and tooling improvements that reduced audit preparation time by 35% and increased ROI on security technology investments.
  • Led cross‑functional upgrade initiatives for compliance and evidence‑tracking systems, improving processing speed by 40% and reducing manual rework across global teams.
  • Partnered with IAM, Infrastructure, and Security Engineering teams to validate system controls, troubleshoot access governance issues, and ensure alignment with PCI DSS and internal security standards.
  • Promoted within 12 months for exceptional performance in system documentation, incident escalation workflows, and audit‑ready evidence management.
  • Improved system accuracy and compliance reporting by 30% by optimizing evidence validation processes and standardizing documentation across IAM, Infrastructure, and Security teams.

Certification

  • Associate, Cybersecurity, Howard Community College
  • Bachelor, Hospitality and Tourism Management, Yaba College of Technology
  • Master of Science (Cybersecurity and Information Assurance), Western Governors University
  • Certificate, Data Science: B Basics, (Harvard College), Data Analysis using Python, Data Analysis using R
  • Certification: CompTIA: Security+ | Network+ | CySA+ | (ISC)²: CGRC - Certified Governance Risk and Compliance | Specialty: Antisiphon SOC Skills Training

ADDITIONAL INFORMATION

  • Growing interest in AI Governance, cloud security, and continuous learning
  • Active member: WiCyS, ISSA, BIT, WGU Cybersecurity Association

Languages

English
Full Professional

Timeline

System Analyst

Cyte llc
2023.12 - Current

Security Analyst Intern

Vobalink inc.
2022.04 - 2022.10

Cybersecurity Support Technician

Alpha Technology Group
2018.05 - 2020.10

Master of Science - Cybersecurity And Information Assurance

Western Governors University

Bachelor of Science - Hospitality And Tourism Management

Yaba College of Technology
OLUWAMI A. TIFSE