Contact information

The job seeker has entered a phone number , email and LinkedIn.

You can get this candidate's contact information from https://www.work.ua/resumes/15504493/?puid=1687733

Work experience

System Control Analyst

from 08.2025 to now (6 months)
Leadway, Remote (Finance, banking, and insurance)

1. Conduct reviews of applications and systems to ensure efficiency, compliance with standards, and proper control implementation.

2. Perform access management reviews, including user access rights, approval matrix, and segregation of duties (SoD).

3. Test and assess new systems, upgrades, and patches to identify control weaknesses and recommend remediation measures.

4. Ensure robust controls are embedded in the change management process to align system changes with business requirements.

5. Monitor transaction trends for unusual activities, ensuring computational accuracy and control integrity.

6. Identify and address control weaknesses within systems, processes, and procedures.

7. Conduct internal control investigations and provide timely reporting on risks and compliance issues.

8. Monitor adherence to departmental policies, procedures, and change control protocols.

9. Ensure integrity, security, and proper maintenance of organizational applications and data.

10. Act as a liaison between internal control and business units on systems and applications-related matters.

IT Governance, Risk Management and Compliance Analyst

from 07.2022 to 07.2025 (3 years)
Hacktales, Remote (IT)

1. Assisted in the development and implementation of IT governance frameworks, improving IT processes.

2. Supported the implementation of ISO 27001, PCI DSS, and other compliance frameworks to enhance security posture.

3. Helped draft IT security policies, standards, and procedures to align with regulatory requirements.

4. Conducted risk assessments and vulnerability analysis, contributing to risk reduction.

5. Assisted in preparing risk registers, control matrices, and compliance documentation to improve reporting accuracy.

6. Collaborated with IT and security teams to identify, assess, and mitigate cybersecurity risks.

7. Assisted in security awareness training programs, educating employees on compliance and risk mitigation strategies

8. Utilized OneTrust, Qualys, and other risk management tools to track compliance and security risks.

9. Supported business continuity and disaster recovery planning to ensure operational resilience.

10. Partnered with cross-functional teams to enhance IT security controls and compliance efforts.

11. Developed and maintained IT governance documentation, including policies, procedures, and audit reports.

IT Support specialist

from 12.2020 to 01.2022 (1 year 2 months)
Tomie Aluminium Products Nig, Ltd (Remote), Remote (Construction, architecture, interior design)

1. Provided technical support for software, hardware, and network-related issues,
ensuring operational efficiency.

2. Trained staff on IT security best practices, leading to a reduction in security incidents.

3. Enforced IT security policies to safeguard company infrastructure and sensitive data.

4. Monitored system performance and network security, proactively addressing
vulnerabilities.

5. Performed data backup and recovery operations, ensuring business continuity.

IT Support Specialist

from 01.2019 to 11.2020 (1 year 11 months)
The Gold-coin Hub Agency, Remote (Finance, banking, and insurance)

1. Perform regular data backups and recovery operations to prevent data loss and ensure business continuity.

2. Provide technical training and onboarding for new employees, ensuring seamless integration into IT systems and best practices.

3. Configure and maintain enterprise applications, collaboration tools (Microsoft 365, Google Workspace), and remote access solutions (VPN, RDP).

4. Maintain and troubleshoot network connectivity, resolving internet and intranet issues to ensure seamless operations.

5. Install, configure, and update operating systems, applications, and enterprise software to enhance system performance and security.

Education

Crawford University

Bachelor of Science (BSc), Information and Communication Technology, Other countries
Higher, from 2013 to 2017 (4 years)

Additional education and certificates

Certified ISO/IEC 27001:2022 Information Security Management Systems Champion

May 14, 2025
Certificate

PCI Compliance Qualys

February 2025 - February 2027
Certificate

Certified in the Governance of Enterprise IT (CGEIT)

December 13, 2024
Certificate

Tech Risk & Compliance Professional

12/10/2024
Certificate

Knowledge and skills

• Internal control
• Compliance Management
• Control testing and monitoring
• Governance
• Support of transactions with high risks
• Fraud detection
• Investigating and reporting
• Audit and assurance
• Control weakness identification
• Process improvement
• IT-Enterprise
• ITIL
• Application control review
• Windows OS User
• Active Directory
• Data integration and integrity

Language proficiencies

English — fluent

Additional information

I am a dedicated IT Governance, Risk, and Compliance (GRC) Analyst with a strong technical foundation in IT support, networking, and cybersecurity. I specialize in ensuring organizations adhere to regulatory and compliance standards while strengthening their security posture.

My expertise includes:
✔ IT Governance & Compliance Frameworks – Contributed to the development and implementation of governance structures, enhancing IT processes and regulatory alignment.
✔ Risk Management & Security Compliance – Assisted in implementing ISO 27001, PCI DSS, and business continuity strategies, improving organizational resilience.
✔ Risk Assessments & IT Audits – Conducted in-depth risk evaluations, identifying vulnerabilities and improving audit efficiency.
✔ Regulatory Monitoring & Documentation – Developed risk registers and compliance reports to ensure up-to-date adherence to industry standards.

I am passionate about bridging the gap between IT operations, security, and compliance, ensuring businesses maintain security, operational efficiency, and regulatory adherence.

I am actively seeking opportunities to leverage my expertise in risk management, compliance frameworks, and security governance to drive robust cybersecurity and regulatory strategies.

Let’s connect and collaborate on building secure and compliant digital environments!