Profiles search

Lukman Oshunkoya

Sr. Information Security Engineer at Wells Fargo
Dallas, TX, United States

Details

Education: Professional Course

Network and System Administration/Administrator

ZOOM Technologies

2013 : 2014

Professional Course

Telecoms Engineer

ZTE University India.

2012
Experience: 2023 : Present

Wells Fargo

Sr. Information Security Engineer

- Make recommendations for Service Improvement Plans and ensure actions are followed through to

completion in a timely manner.

- Manage the EDR (Trend micro) and Vulnerability (Alert Logic) teams to identify, categorize, examine

/analyze, remediate, and monitor CVE’s (common vulnerabilities and exploits) within the

environment to ensure proper sanitization and high standards of performance and security.

- Manage Incident, Request, Change and Escalation processes, ensuring high levels of performance in

these processes, accurate reporting and establishing service improvement activities when required.

- Provide Support in projects relating to Security, Networking, and compliance, developing a strong

understanding of projects goals, abiding by ISO27001, and ensuring service impact is minimized

and agreed.

- Accountable for the quality of Service and performance; ensuring future demand from growth and

projects is understood and factored into capacity plans for all associated systems

- Monitor, control, and support service delivery; ensuring systems, methodologies SOP (Standard

operating procedure) are in place and followed.

2021 : 2023

Unisys

I.T Analyst SDM (Service delivery manager)

2021 : 2022

North Central Texas Council of Governments

I.T Cybersecurity Analyst

-Perform updates to system security plans (SSP) using NIST 800-18 as a guide to procedures, review, update plans of action and milestones (POAMS)

-Daily implementation of Risk management framework (RMF) using NIST 800-37 as guide

-Perform assessment and continuous monitoring including initiating meetings with various system owners and information system security officer (Isso).

-Support business Controls/Technology risk leadership on the implementation of information Technology risk management strategy and operating priorities.

2018 : 2021

Cognizant

I.T Security Analyst

-Evaluating and performing incident escalation in accordance with incident response procedures.

-Reviewing IDS/IPS event and identify anomalous activity or potential network security risk.

-Monitoring and investigating suspicious network activities utilizing variety of tools such as ArcSight, Splunk Carbon black/bit9, FireEye.

-Performing incident handling and documentation within the incident response lifecycle (detection, triage, analysis, mitigation, reporting and documentation).

-Attending classified briefings in order to facilitate the sharing of information and increased awareness of cyber threats.

2015 : 2018

ExchangeHub (Brighter Brain)

Security Operations Center Analyst
Company: Wells Fargo
Years of Experience: 9

Skills

GSM, Management, Microsoft Excel, Microsoft Office, Microsoft Word, Network Engineering, Networking, Project Management, Servers, System Administration, Telecommunications

About

Cybersecurity Experience Overview



I have accumulated substantial experience in the field of cybersecurity through my work in various organizations. With a solid foundation in information security principles and practices, I have actively contributed to protecting sensitive data and mitigating cyber threats. My work experience encompasses the following key areas:



Security Operations: I have been actively involved in monitoring and managing security incidents, including conducting investigations, analyzing potential breaches, and implementing incident response measures. I have a proven ability to effectively identify and respond to security threats, ensuring timely incident resolution and minimizing potential damages.



Vulnerability Assessment and Penetration Testing: I have conducted comprehensive vulnerability assessments and penetration tests to identify potential weaknesses in systems, networks, and applications. By leveraging industry-standard tools and techniques, I have successfully identified and recommended remediation strategies to address vulnerabilities, enhancing overall security posture.



Security Audits and Compliance: I have assisted in conducting security audits and compliance assessments to evaluate adherence to regulatory standards and organizational policies. I am well-versed in frameworks such as ISO 27001, NIST, and PCI DSS, and have contributed to ensuring compliance by implementing necessary controls and processes.



Security Awareness and Training: I have developed and delivered comprehensive security awareness and training programs to educate employees about cybersecurity best practices, emphasizing the importance of secure behaviors and promoting a culture of security within the organization.



Incident Response Planning: I have actively participated in the development and enhancement of incident response plans, ensuring a structured and coordinated approach to managing security incidents. This includes defining roles and responsibilities, establishing communication channels, and conducting tabletop exercises to validate the effectiveness of the plans.



My passion for cybersecurity and commitment to continuous learning has allowed me to stay updated with the latest advancements in the field. I am dedicated to making significant contributions to safeguarding sensitive information and ensuring the resilience of organizational systems against cyber threats.