Profiles search
Angelo Odudu
Information Security Officer at CNA Insurance.
Houston, TX, United States
Details
Experience:
● Created, maintained, and reviewed Information Security documentation for the SOC in accordance with company guidelines using the MITRE ATT&CK framework.
● Coordinate with the SOC Director and security teams to develop and maintain IT security policies, architecture, and security across the organization, including performing audits of security systems documentation to maintain compliance with standards and protocols.
●Led a team of security analysts responsible for real-time monitoring, analysis, and triage of security events from various sources, including SIEM, IDS/IPS, and endpoint security solutions.
●Created, maintained, and reviewed Information Security documentation for the SOC in accordance with company guidelines using the MITRE ATT&CK framework.
●Coordinate with the SOC Director and security teams to develop and maintain IT security policies, architecture, and security across the organization, including performing audits of security systems documentation to maintain compliance with standards and protocols.
●Led a team of security analysts responsible for real-time monitoring, analysis, and triage of security events from various sources, including SIEM, IDS/IPS, and endpoint security solutions.
2022 : Present
CNA Insurance
Information Security Officer
●With direction from the CISO conducted an overhaul of the information security structure of the organization to meet audit requirements.
●Created a strong documentation and process-oriented environment, leading and managing complex technology projects adhering to NIST 800-53 guidelines.
● Commissioned and rolled out NIST 800-53 compliant information security awareness training programs and conducted regular awareness-raising activities to promote a secure environment.
●Maintained ongoing visibility of key global business initiatives and prioritized Information Security Risk oversight according to the NIST 800-53 risk management framework.
2022 : 2022
City of Phoenix Information Technology Services (Dept.)
Governance, Risk, and Compliance Manager
• Created and proactively managed the company's ISO 27001 and GDPR Information Security
• Management Program, ensuring continuous compliance and achieving the company’s first certification.
Determined and monitored compliance ensuring the company’s business activities were in line with HIPAA policies and procedures.
• Recommended changes and enhancements to HIPAA policy based on the evolving threat landscape and business goals.
• Coordinated the company's vulnerability management program to address potential risks.
2021 : 2022
BurnAlong
Information Security Officer
• Maintained and enhanced the enterprise information security risk management framework, policy, processes, and tools in alignment with PCI DSS requirements for continued effectiveness.
• Set and achieved PCI DSS program goals, objectives, and tactics for consistent progress and improvement.
• Collaborated with the Director of Information Security Program Management and the Chief Information Security Officer (CISO) in managing the PCI DSS reporting process.
2021 : 2021
Sabre Corporation
Audit Compliance Manager
● Developed and implemented comprehensive information security policies and procedures in compliance with ISO 27001 and NIST 800-53
●Managed security risk assessments and vulnerability analyses to identify potential threats and recommend appropriate mitigation strategies.
●Collaborated with cross-functional teams to ensure the integration of security best practices into all aspects of the organization's operations.
2020 : 2021
Neustar, Inc.
Information Security Officer
● Coordinate with the SOC Director and security teams to develop and maintain IT security policies, architecture, and security across the organization, including performing audits of security systems documentation to maintain compliance with standards and protocols.
●Led a team of security analysts responsible for real-time monitoring, analysis, and triage of security events from various sources, including SIEM, IDS/IPS, and endpoint security solutions.
●Created, maintained, and reviewed Information Security documentation for the SOC in accordance with company guidelines using the MITRE ATT&CK framework.
●Coordinate with the SOC Director and security teams to develop and maintain IT security policies, architecture, and security across the organization, including performing audits of security systems documentation to maintain compliance with standards and protocols.
●Led a team of security analysts responsible for real-time monitoring, analysis, and triage of security events from various sources, including SIEM, IDS/IPS, and endpoint security solutions.
2022 : Present
CNA Insurance
Information Security Officer
●With direction from the CISO conducted an overhaul of the information security structure of the organization to meet audit requirements.
●Created a strong documentation and process-oriented environment, leading and managing complex technology projects adhering to NIST 800-53 guidelines.
● Commissioned and rolled out NIST 800-53 compliant information security awareness training programs and conducted regular awareness-raising activities to promote a secure environment.
●Maintained ongoing visibility of key global business initiatives and prioritized Information Security Risk oversight according to the NIST 800-53 risk management framework.
2022 : 2022
City of Phoenix Information Technology Services (Dept.)
Governance, Risk, and Compliance Manager
• Created and proactively managed the company's ISO 27001 and GDPR Information Security
• Management Program, ensuring continuous compliance and achieving the company’s first certification.
Determined and monitored compliance ensuring the company’s business activities were in line with HIPAA policies and procedures.
• Recommended changes and enhancements to HIPAA policy based on the evolving threat landscape and business goals.
• Coordinated the company's vulnerability management program to address potential risks.
2021 : 2022
BurnAlong
Information Security Officer
• Maintained and enhanced the enterprise information security risk management framework, policy, processes, and tools in alignment with PCI DSS requirements for continued effectiveness.
• Set and achieved PCI DSS program goals, objectives, and tactics for consistent progress and improvement.
• Collaborated with the Director of Information Security Program Management and the Chief Information Security Officer (CISO) in managing the PCI DSS reporting process.
2021 : 2021
Sabre Corporation
Audit Compliance Manager
● Developed and implemented comprehensive information security policies and procedures in compliance with ISO 27001 and NIST 800-53
●Managed security risk assessments and vulnerability analyses to identify potential threats and recommend appropriate mitigation strategies.
●Collaborated with cross-functional teams to ensure the integration of security best practices into all aspects of the organization's operations.
2020 : 2021
Neustar, Inc.
Information Security Officer
Company:
CNA Insurance
Spoken Language:
English, Igbo, Japanese, Spanish, Yoruba
About
Senior Management experience leading and delivering high valued strategies and process transformation in various domains with over 9+ years of experience.
Profile Photo
