Adesoji Faniyan
@adesojifaniyan
GRC and third-party risk leader driving compliance, security awareness, and remediation.
CanadaWhat I'm looking for
I’m a results-oriented GRC professional with over 8 years of experience leading governance, risk management, and compliance initiatives. At ATB Financial, I drive supplier and third-party risk governance across the full lifecycle while strengthening the organization’s security posture through a robust Security Awareness Program.
Previously at Cognizant, I streamlined vendor onboarding, identified and mitigated vulnerabilities in vendor controls, and led comprehensive compliance initiatives for SOC 2, PCI-DSS, and ISO 27001 through rigorous assessments and ongoing testing. I also utilized SAP GRC Access Control for user access compliance, conducted regular risk assessments with Drata, and helped internal teams with security policies and best practices—especially with a focus on PIPEDA.
Earlier in my career, I delivered IT audits and SOC engagements at KPMG and IT audits at Skye Bank Plc, including SOC 1/SOC 2 engagements, IT General Controls testing, IT risk assessments, and SOX testing. I mentor teams, translate findings into actionable recommendations, and foster a practical, team-driven culture of compliance.
Experience
Work history, roles, and key accomplishments
AFDrive third-party vendor risk governance across the full lifecycle and strengthen the organization’s security posture through a Security Awareness Program. Lead SOC 2 and vendor risk reviews, develop vendor intake/lifecycle standards, manage remediation of internal audit deficiencies, and present risk metrics to executive leadership.
COStreamlined vendor onboarding by assessing and mitigating vendor control vulnerabilities and advising on remediation plans. Led SOC 2, PCI-DSS, and ISO 27001 compliance initiatives, designed security policies and controls, mentored 5 junior analysts, and managed access control using SAP GRC to support segregation of duties and compliant provisioning.
GMConducted vendor security evaluations using SOC reports, penetration test results, vulnerability scans, and BC/DR documentation to guide onboarding. Developed risk mitigation strategies, tracked remediation progress, used RSA Archer for response tracking/reporting, maintained GRC metrics, and managed security awareness training through KnowBe4.
KPPerformed SOC 1 and SOC 2 engagements, including testing the design and operating effectiveness of IT and security controls. Reviewed and evaluated control frameworks against NIST and other best practices, advised clients on COBIT/COSO/ITIL/ISO approaches, led a team of junior auditors, and produced audit reports with recommendations for improvement.
IT Auditor
Skye Bank Plc
Jun 2013 - Nov 2019 (6 years 5 months)
Performed periodic audits of IT governance and enterprise/network and datacenter security, including reviews of routers, switches, databases, servers, and ATM environments. Supported PCI DSS certification work, executed IT General Controls and IT Application Controls audits using COSO/COBIT, contributed to ISO 27001 external audit support, and conducted annual IT audit SOX testing and IT risk asse
Education
Degrees, certifications, and relevant coursework
UIUniversity of Ibadan
Master of Science, Computer Science
Earned an MSc in Computer Science from the University of Ibadan.
BUBabcock University
Bachelor of Science, Computer Information Systems
Earned a BSc in Computer Information Systems from Babcock University.
Availability
Location
CanadaAuthorized to work in
Job categories
Interested in hiring Adesoji?
You can contact Adesoji and 90k+ other talented remote workers on Himalayas.
Message AdesojiFind your dream job
Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!
