Israel Edereka

(346) 810-5277
[email protected]

Summary:
 Security Plus Certified Project Manager with experience in Cyber Risk assessment and project management
professional.
 10+ years of experience delivering complex security projects and implementing best practices and standards.
 Possess a strong understanding of industry standards and regulations, including NIST, ISO 27001, PCI-DSS
and HIPAA, and knowledge about the latest trends and developments in the field of cybersecurity.
 With a passion for continuous learning and improvement, I always seek new and innovative solutions that
meet each client's unique needs and drive success for their organisations.

Skills:
 PMP and Security+ Certified
 Project Management
 Risk and Vulnerability Assessments
 Third Party Risk Assessments
 Vulnerability Management
 NIST 800-53, ISO/IEC 27001
 NIST Cyber Security Framework
 Security Training and Awareness
 End User Training and Support
 Security Audit

Certification:
 Project Management Professional (PMP) (2022)
 ITIL Version 3 Foundation (2013)
 CompTIA Certified Technical Trainer (CTT+) (2013)
 CompTIA Security+ (2012)
 CompTIA Server+ (2012)
 Compaq Accredited Platform Specialist (APS) (2002)
 Microsoft Certified Professional (MCP) (2000)

Education:
 Doctor of Business Administration (2021)
o Swiss School of Business and Management - Honorary
 Doctor of Philosophy, Computer Science (2020)
o ESPAM Formation University
 Master of Science, Information Technology (2016)
o Nigeria National Open University of Nigeria

Professional Experience:

United States Agency for International Development (USAID) Sept/2017 – Dec/2022

Cybersecurity Project Manager, Infrastructure Security
 Responsible for leading vendor risk management engagements and formalised risk analysis engagements
 Conducting thorough risk assessments of third-party relationships and evaluated the effectiveness of security
controls to minimise potential threats to the organisation.
 Leading the development and implementation of program management procedures, frameworks, and metrics
to achieve business goals with defined success criteria.
 Identifying program risks and driving the implementation of recommended mitigations.
 Established information security standards and protocols, providing technical support and expertise to
management in implementing the organisation's security policies.
 Successfully led the migration of 150 users to Microsoft Office 365, enhancing email communication and
collaboration among staff and improving efficiency by 45%.
 Implemented the ServiceNow ticketing and asset management application system at USAID to streamline
support services, resulting in improved organisational efficiency and staff productivity.
 Led the successful deployment of secure Wi-Fi infrastructure for a large government organisation, providing
reliable internet services for over 150 staff and supporting over 450 mobile devices.
 Provided comprehensive training to over 500 users on adopting new information systems and security
solutions, including migration to Google Cloud, Adobe Connect, GLAAS, ServiceNow, and document
management.
Senior Systems Analyst July/2013 - Nov/2017
 Implemented strategies to improve system design and reduce the time required for implementation while
ensuring compliance with the agency's information security policy and guidelines.
 Managed the scheduling of production work to meet critical reporting, payroll, and other responsibilities,
ensuring that the day-to-day operations of the information systems were secure and in compliance with the
policy.
 Developed and implemented security programs and applications as authorised by the Chief Information
Officer, Washington, DC, to enhance the organisation's security posture.
 Assessed the effectiveness of the information security policy and made recommendations for improvements to
ensure the continued protection of sensitive information.

Application Analyst/ Trainer Mar/2010 - July/2013

 Trained end users and IT analysts in secure usage of applications post-migration and provided ongoing
security awareness training to prevent new threats from being introduced into the environment.
 Conducted security reviews of application development and enhancements to ensure that the organisation's
information systems remained secure.
 Worked closely with engineers and product owners to review security findings and make recommendations for
improvements to the organisation's information security program.
 Implemented ISO 27001, PCI DSS v3.2.1 based on security standards based on organisation business
requirements and security objectives, resulting in a 25% improvement in the overall security posture.
 Led the end-to-end implementation of the PCI-DSS program, starting from scratch and successfully obtaining
certification within 6 months, resulting in increased customer trust and 20% growth.