Open to opportunities

Adedayo Musbau

@adedayomusbau

Message

Results-driven GRC Analyst with over 7 years of experience.

United States

Message

What I'm looking for

I am looking for a role that fosters growth, collaboration, and innovation in risk management.

I am a results-driven Governance, Risk, and Compliance (GRC) Analyst with over 7 years of experience in leading IT risk assessments, compliance audits, and governance initiatives across highly regulated industries. My expertise lies in implementing frameworks such as ISO 27001, NIST, SOC 1/2, PCI-DSS, HIPAA, and SOX, which has enabled organizations to reduce risk exposure and strengthen compliance maturity. I have a proven track record of supporting continuous monitoring of control environments and fostering cross-functional collaboration to achieve operational excellence.

Throughout my career, I have successfully spearheaded enterprise-wide risk assessments and developed mitigation strategies that enhance control effectiveness. My role at the U.S. Navy involves managing audit coordination and remediation tracking for compliance audits, where I generate detailed reports and dashboards for executive stakeholders. I am passionate about driving awareness programs that educate business units on data protection, resulting in improved accountability and adherence to IT policies.

My experience with enterprise GRC platforms, such as ServiceNow GRC and RSA Archer, has equipped me with the skills to streamline compliance processes and improve audit readiness. I am committed to aligning organizational risk posture with evolving regulatory obligations and business priorities, ensuring that compliance objectives are met effectively and efficiently.

Experience

Work history, roles, and key accomplishments

Current

Governance, Risk & Compliance (GRC) Analyst

Current

U.S. Navy

Nov 2023 - Present (1 year 8 months)

Spearheaded the assessment and monitoring of IT controls aligned with SOX, PCI-DSS, and FFIEC, ensuring continuous compliance across IT infrastructure. Led audit coordination and managed remediation tracking for SOC 2, ISO 27001, and GDPR compliance audits.

SOX PCI DSS FFIEC SOC ISO 27001 GDPR Risk Management

Governance, Risk & Compliance Analyst

Alcon

Apr 2021 - Present (4 years 3 months)

Implemented and managed ServiceNow GRC/IRM modules to streamline enterprise compliance processes across Policy & Compliance, Risk, and Vendor Risk Management functions. Executed control testing, gap assessments, and regulatory audits across 15 compliance domains, improving compliance maturity.

ServiceNow GRC IRM Compliance Management Controls Testing Data Privacy

IT Risk & Compliance Analyst

Randstad

Aug 2019 - Present (5 years 11 months)

Conducted IT risk assessments for infrastructure, applications, and vendors, aligning findings with ISO 27001, NIST CSF, and HIPAA security rules. Facilitated SOC 1 and SOC 2 audit engagements by coordinating with auditors and tracking control remediation.

ISO 27001 NIST CSF HIPAA)SOC Policy Updates

Third-Party Risk Assessor

LendingClub

Aug 2017 - Present (7 years 11 months)

Executed third-party risk assessments for new and existing vendors using ServiceNow GRC, evaluating financial, cybersecurity, and operational risk exposure. Developed standard operating procedures for onboarding vendors and tracking remediation activities.

Vendor Risk Management SOP Development Cross Functional Collaboration Due Diligence