Open to opportunities

Mosun Shobowale

@mosunshobowale

Message

I am a results-driven technology risk manager specializing in IT audit, GRC, and cloud and ERP security.

United States

Message

What I'm looking for

I am seeking a leadership role in technology risk or GRC where I can lead audits, improve security posture, mentor teams, drive cloud and ERP compliance, and support regulated programs leveraging my Active Secret clearance.

I am a Technology Risk and Governance professional with 6+ years leading IT risk management, cybersecurity, and regulatory compliance across multi-cloud and on-premises environments. I hold CISA, CRISC, and CSX certifications and maintain an Active Secret Security Clearance.

I have spearheaded ITGC and SOX audits, designed governance frameworks, and configured SAP GRC modules to remediate Segregation of Duties conflicts and strengthen ERP security. I drive cloud and third-party compliance initiatives (AWS, Azure, PCI DSS, NIST 800-53), standardize audit processes, and produce executive-level reporting and KPIs.

I lead cross-functional teams, mentor consultants, and deliver training programs that improved audit readiness and efficiency across 20+ engagements annually. I seek opportunities to apply my hands-on GRC and cloud compliance expertise to drive measurable security improvements in regulated, mission-critical environments.

Experience

Work history, roles, and key accomplishments

Current

Manager, Technology Risk

Current

RSM

Mar 2021 - Present (4 years 6 months)

Spearhead IT risk assessments and governance frameworks for financial services and technology clients, leading cross-functional teams and improving audit readiness across 20+ engagements annually.

ITGC SOX Third Party Risk Management Cloud Compliance (AWS Azure)

Current

Logistics Specialist

Current

U.S. Army Reserve

Apr 2016 - Present (9 years 5 months)

Manage supply chain operations and equipment procurement for mission-critical logistics support in the U.S. Army Reserve.

Logistics Supply Chain Management Procurement Inventory Management Operations Equipment Management

Senior Technology Risk Consultant

RSM

Sep 2019 - Mar 2021 (1 year 6 months)

Executed end-to-end ITGC testing and SAP GRC implementations, leading SoD analyses and delivering risk dashboards and remediation plans that strengthened compliance posture.

ITGC GRC SoD Analysis PCI DSS NIST 800 53 ISO 27001 Dashboards

Senior Cyber Risk Consultant

Deloitte & Touche

Sep 2018 - Sep 2019 (1 year)

Implemented SAP GRC Access Control modules and advised clients on PCI DSS remediation, aligning DevSecOps pipelines with automated security controls to improve GRC maturity.

SAP GRC Access Controls Arm ARA PCI DSS DevSecOps GRC

Cyber Risk Consultant

Deloitte & Touche

Sep 2015 - Sep 2018 (3 years)

Conducted threat and vulnerability management and control testing for PCI, HIPAA, and SOX across hybrid cloud environments while managing SAP access controls and user provisioning automation.

Vulnerability Management PCI HIPAA SOX User Provisioning Cloud Security Controls Testing

Risk Assurance Intern

PricewaterhouseCoopers

Jun 2014 - Aug 2014 (2 months)

Conducted GITC walkthroughs and testing for access, change, and operations management and documented remediation plans to address internal control gaps.

GITC Testing Access Control Change Management Internal Controls

Concierge Intern

Walt Disney World Resort

Jan 2012 - Jun 2012 (5 months)

Coordinated pre-arrival services and personalized itineraries, delivering exceptional guest experiences and creative engagement strategies during closures.

Customer Experience Communication Problem Solving