
About TotaMatch
We introduce professionals who are discreetly exploring new opportunities. Their identity remains anonymous until they agree to an introduction, keeping their search confidential and your shortlist exclusive.
Oluwatobi
Verified
Typically responds within 2 days
Get acquainted
Work Experience
Cyber Security Mentor
2021 – present · 5 yrs
Springboard, San Francisco, California
•
• Training various mentees on Cyber Security
•
• Weekly calls with all mentees to monitor progress and explain complex topics
•
• Training mentees on how to use various cyber security tools
•
• Holding practical sessions with mentees
•
• Explaining complex topics to mentees
Lead, Security Design & Consulting
2021 – present · 5 yrs
Flutterwave Inc., Lagos, Nigeria
•
• Oversee Security Architecture
•
• Oversee Attack surface reduction
•
• Lead hands on application security assessments (IAST, DAST and SAST)
•
• Oversee Security Operations Center
•
• Oversee DevSecOps
•
• Act as the main point of contact for all risk assessment and remediation
•
• Lead and manage high, medium and low risk assessments for both third party party and projects
•
• Consult with stakeholders on key controls and security requirements
•
• Perform technical project and supplier risk assessments
•
• Consult and lead remediation plans once risk assessments have been conducted
•
• Ensure projects comply with the company’s information security policies
Senior Information Security Analyst
2020 – 2021 · 1 yrs
Nigeria Inter-Bank Settlement Systems PLC, Lagos, Nigeria
•
• I was in charge of the Application security department
•
• Program manager for implementation and certification to PCIDSS
•
• I perform DAST and SAST of the various APIs and APPs exposed to Financial and non-Financial institutions. • I conduct regular security assessment on the organization’s cloud infrastructure
•
July 2020 – Aug 2021
•
• I head the threat intelligence arm of the SOC and ensure event correlation, hunting & vulnerability remediation.
•
• I reduced security testing delays by implementing and integrating tools with the CI/CD pipeline.
•
• I work with the solutions architect to ensure the architecture of applications have security built into them
•
• I’m actively involved in the agile team for four different work streams and oversee network security.
•
• I lead incident response activity, forensics and contribute to the remediation of identified vulnerabilities.
•
• I conduct regular domain security review and implementation of recommended security controls.
•
• I facilitate training and awareness for colleagues and partners
•
• Provide leadership and training to other consultants.
Cyber security Consultant
2020 – 2020
KPMG
•
• I performed the quality assurance test for 2 top Banks’ implementation of SIEMs and SOARs solutions. ·
•
• I led red team exercises that led to a revamp of 3 top organizations in Nigeria.
•
• I led the collaboration with clients to implement the recommendations of the VAPT engagements
•
• I conducted Cyber Security Maturity Assessment for a top financial institution
•
• I conducted application penetration testing for a top financial institution
•
• I facilitated third party risk assessment for a top financial institution ·
•
• I led a comprehensive firewall review for a top financial institution after bypassing the controls in place.
•
• I used OSINT for information gathering on of most top tier organization in Africa for practical sessions.
•
• I facilitated sessions to explain vulnerabilities, architectures and designs to C-level staff / Board members.
Information and Application Security Analyst
2017 – 2020 · 3 yrs
Access Bank PLC, Lagos
•
I Led the App. Security team where I ensured all applications’ security-related risks are mitigated against.
•
• Vulnerability Assessment and Penetration Testing of the Bank’s several applications andinfrastructures using tools like
•
burpsuite, Nessus, Qualysguard, Acunetix, Kali Linux etc.
•
• I reviewed, proposed and implemented a better firewall management strategy (Perimeter and host-based) for the Bank which drastically reduced
•
the number of illegitimate traffic by more than 90% and
•
• I lead the remediation that helped the Bank achieve PCIDSS recertification.
•
• I interpreted the Bank's SIEM for reactive, predictive and corrective analysis.
•
• I led the security implementation in the design of new products, services, processes and solutions in the Bank
•
• I provided third level support for cyber incidence, training and counter measure for the SOC.
•
• I led various offensive assessments for the effectiveness of security controls ·
•
• I provided support and contributions during changes to existing systems and implementation of new systems
•
• I improved the security posture in Access Bank Nigeria and Congo DR after an assessment I led.
•
• I assessed and implemented more than three emerging technologies and solutions to improve security posture.
•
• I Developed a tracker program and social engineering assessment solution that saved the Bank 20 million Naira.
•
• Lead 2/4 investigative efforts with respect to breach or persisting threats, determine root cause, recommend remediation activities.
•
• Received and analyzed Cyber security intelligence feeds; recommend security controls and implemented the controls as needed
•
• Lead periodic threat hunting activities to determine presence or absence of Cyber security threats.
•
• Security review of new and existing bank’s technology implementations and provide necessary recommendations to tighten security.
Lead Software Engineer
2016 – 2017 · 1 yrs
Kuda Bank, Lagos
•
Kuda Bank (formerly Kudi Money) was a loan agency with a unique lending model which I led the development and conducted the application security assessment of. Apart from this, my other duties were:
•
• I managed the firm’s AWS infrastructure
•
• I developed the security plan and policies for the company
•
• I conducted Vulnerability Assessments and Penetration Tests for the organization.
•
• I investigated security breaches at the firm and designed the end-to-end architecture for the application.
•
• I conducted Training and awareness for my colleagues
Lead IT Officer
2015 – 2016 · 1 yrs
HouseHoldMax Limited, Lagos
•
HouseholdMax Limited was an Online shopping mall that used Cs-Cart to manage the business. My functions were:
•
• I programmed and installed add-ons and affiliate programs for Cs-Cart
•
• I managed the LAMP stack, provided IT Assistance, performed SAST and DAST on the website and add-ons
•
• I proposed, developed and managed third party software development for the organization.
•
• I managed the LAMP stack.
Software Developer
2013 – 2015 · 2 yrs
DigitalWeb Limited, Lagos
•
DigitalWeb was my first workplace after my compulsory one year service with the National Youth Service Corps. I worked as a Junior Web developer and used PHP for web development. My notable achievements were:
•
• I developed various CakePHP applications and components that extended the functions of existing Apps.
•
• I developed a role based access control component that was plugged into all solutions of the firm.
•
• I provided general IT Assistance and managed the LAMP stack
•
• Some Projects I accomplished are: recoding vacancydesk.com, nirsal.com, http://www.solnigeria.com/
Skills
Backend Development
PHP, Django, JSON, Laravel, CakePHP, SlimPHP, Spring Boot, Apache Webserver
Databases & Storage
NoSQL, Database Design, SQLite, Azure SQL, Microsoft SQL Server
Data Science & Analytics
Data modelling, Algorithms, Algorithms and Data Structure
Cloud & Infrastructure
Amazon Web Services, Amazon EC2
Frontend Development
AJAX
Testing & QA
JUnit
Security & Compliance
Cybersecurity
Availability & Preferences
Hours per week
20-40 hours
Education
MSc Computer Science · Federal University of Agriculture, Ogun State · 2014 – 2017
BSc. Computer Technology (First class division, honors) · Babcock University, Nigeria · 2009 – 2012
Why anonymous?

Oluwatobi is exploring opportunities confidentially through TotaMatch. We only share information relevant for an initial assessment here. Upon mutual interest, a personal introduction with full name, portfolio, and contact information will follow.
Contact Oluwatobi
Oluwatobi remains anonymous until there is mutual interest. TotaMatch will check if they are open to an introduction. No obligations, no waiting times longer than 48 hours.