AKINTAYO Sofiyah Modupeola

Compliance Documentation & Reporting System Design: Architected a centralized, data-driven compliance system for TechFlow Industries, transitioning the firm from reactive paper-based processes to a proactive digital repository with standardized reporting templates and a real-time KPI dashboard.

Authorized External Security & Compliance Assessment: Conducted a comprehensive vulnerability assessment using Nmap and Burp Suite Professional, identifying critical flaws like SQL Injection and Broken Access Control, and mapped findings to the OWASP Top 10 framework for executive remediation.

Quantitative Risk Analysis & Treatment Planning : Conducted financial risk modeling for mobile banking vulnerabilities, calculating Single Loss Expectancy (SLE) and Annualized Loss Expectancy (ALE) to demonstrate a 90% risk reduction and a high ROI for proposed security controls.

HIPAA GRC Engagement: Performed a gap analysis against the HIPAA Security Rule, designed a formal Password and Authentication Policy (PAP), and developed a ransomware recovery strategy involving forensic analysis and sanitized system restoration.

Cybersecurity Risk Assessment & Management Strategy: Developed a hybrid risk management framework for TechStart Solutions by integrating NIST and ISO 31000 standards, producing a comprehensive risk register and a three-phase remediation roadmap for 500+ clients.

Multinational Compliance Crisis Management (GlobalSync Inc.): Assumed the role of Chief Compliance Officer to resolve complex international issues including GDPR data transfer violations, FCPA bribery allegations, and the implementation of a "Tone at the Top" governance strategy.

Security Log Analysis & Threat Detection: Analyzed failed authentication and vulnerability logs to detect brute-force attacks and unaddressed critical vulnerabilities (e.g., CVE-2023-9012), proposing technical remediations like MFA and automated SIEM flagging.

Linux Security Monitoring & Auditing: Executed hands-on system auditing and hardening on Linux environments using tools such as auditd, Lynis, and journalctl to identify and remediate configuration vulnerabilities.

Ransomware Incident Response Planning (FinanceFirst Credit Union): Developed a detailed ransomware incident response playbook, establishing critical protocols for initial detection, system isolation, log preservation, and secure credential management to ensure business continuity.

Digital Transformation Risk Assessment (SecureBrew Cafe): Conducted a comprehensive risk analysis for a cloud-based POS and loyalty app ecosystem; identified high-impact risks like Man-in-the-Middle attacks and recommended isolation of public Wi-Fi from secure transaction networks.

Digital Transformation Risk Assessment (SecureBrew Cafe): Conducted a comprehensive risk analysis for a cloud-based POS and loyalty app ecosystem; identified high-impact risks like Man-in-the-Middle attacks and recommended isolation of public Wi-Fi from secure transaction networks.

Continuous Risk Monitoring & Detective Control Implementation: Designed and deployed a detective control using the Wazuh platform to monitor a designated sensitive file directory for unauthorized modifications, ensuring a centralized audit trail and real-time alerting for compliance mandates.

Disaster Recovery After-Action Analysis (FinanceFirst Bank): Authored a formal after-action report following a primary data center failure; analyzed the execution of disaster recovery protocols, data synchronization integrity, and stakeholder communication effectiveness to improve future resilience.

Crisis Communication & Data Breach Response Simulation: Orchestrated a simulated data breach response including the development of a Crisis Communication Strategy, employee notification plans, and media response statements to maintain organizational reputation and transparency.

Developed a specialized Python-based tool to automate Governance, Risk, and Compliance (GRC) workflows, transitioning qualitative risk assessments into data-driven financial models.

Applied SQL, Python, and Azure Machine Learning services to develop real-world solutions within the African Deeptech Challenge, demonstrating practical application of advanced AI/ML concepts.

Undergoing hands-on technical specialization and project delivery, focusing on data science and machine learning, preparing for immediate workplace readiness.

Engaged in a rigorous fellowship program, building foundational expertise in AI/ML through practical assignments and collaborative problem-solving.

Applied Python in Breast Cancer Classification using different classification models.

Engineered a predictive financial tool using Python to model cybersecurity risk impact, utilizing various data points such as Single Loss Expectancy (SLE) and Annual Rate of Occurrence (ARO).

Designed a user-centric interface that allows for dynamic "What-If" scenario modeling, helping organizations visualize the financial benefit of specific security controls before deployment.

Developed comprehensive audit plans and internal auditing processes, strengthening organizational security posture and compliance.

Authored impactful cybersecurity newsletters, significantly increasing employee awareness and adherence to best practices across the organization.

Contributed to enhanced overall organizational security and awareness through proactive development and dissemination of critical cybersecurity information.

Managed daily operations of the Morbid Anatomy Museum and Histopathology Laboratory, ensuring efficient resource utilization and compliance with academic standards.

Analyzed end-of-posting evaluation sheets to identify operational inefficiencies and inform strategic improvements in departmental effectiveness.

Streamlined laboratory workflows and museum processes, contributing to optimized operational efficiency and improved data management.

Utilized various animation tools to create diverse explainer and animated videos, enhancing communication and visual storytelling capabilities.

Completed intensive hands-on training in animation techniques, mastering software and workflows for multimedia content creation.