Islamiat Sharomi

I’m a GRC and cybersecurity professional with hands-on experience drafting security policies, conducting risk assessments, and mapping controls to ISO/IEC 27001 and NIST CSF. I completed a practical fintech GRC engagement producing risk registers, governance reports, and a compliance roadmap.

In my Cybersecurity Intern role at Alare 88.3FM, I drafted three security policies (access control, password management, and social media usage) to govern ~15 staff across broadcast and administrative functions. I also identified four NDPR compliance gaps in station data handling practices and delivered a written remediation report to management.

I take compliance seriously as an operational discipline: I established structured procedures for managing listener, employee, and advertiser data, reducing uncontrolled data exposure across broadcasting systems. I’m comfortable turning requirements into clear governance artifacts that teams can follow and maintain.

From my Coursera capstone, I delivered a full security governance assessment for a simulated fintech company—mapping controls to ISO/IEC 27001 and NIST CSF, producing a risk register with 10+ scored risks, and authoring information security policy, access control policy, compliance monitoring plan, and a remediation roadmap. I’m Google-certified in Cybersecurity and GRC Fundamentals, and I’m eager to contribute to security and compliance operations in a remote internship or entry-level role.