Olu Olateju

A strategic and solution-focused Senior IT and Cyber Security Professional, with over 22 years of extensive experience across all architecture domains and a sustained record of success. An adept communicator with wide-ranging expertise and knowledge including; security designs, cloud infrastructure, virtualisation, design integration and implementation with a solid understanding of multiple architecture, Standards and frameworks such as CIS, SAFe, OWASP, TOGAF, COBIT, SABSA, BSIMM, NIST, NCSC, DORA, ISO27001, GDPR, PCI-DSS, SOX, UK DPA. A dynamic hands-on ethos professional, able to understand the business context and help define business cases including CapEx/OpEx costs, providing risk mitigation, benefits, and timeline solutions, now seeking a new challenge, where expertise, experience, and enthusiasm will bring immediate value.

Security

Cleared

Lead Cyber Security Architecture and Assurance - Acrisure International

(2023-02)

Led cybersecurity for Acrisure International Holdings, overseeing security practices across multiple Acrisure Partners. Provided expert security guidance to the C-suite, aligning business objectives with robust cybersecurity strategies.

• Led Zero Touch Strategy for Acrisure International, defining road maps and HLD/LLD designs, implementation of micro-segmentation, a new IAM system and Credential Management
• Supported security programs for Acrisure partners in Europe, enhancing controls and mitigating new risks
• Led security engineering initiatives for Azure and M365 core services such as Exchange Online, SharePoint, Teams and OneDrive and Security compliance for Entra ID SSO, MFA CA policies, Microsoft Defender advanced threat protection
• Architected and implemented AI-driven workflows to fortify cybersecurity defences, resulting in a 20% reduction in incident response times, such as automating policies and reporting for XSOAR
• Collaborated with cross-functional teams to understand cybersecurity requirements and integrated machine learning models for anomaly detection and threat intelligence
• Conducted risk assessments, identified vulnerabilities, and proposed strategic improvements to mitigate risks
• Led the designing and implementation of cybersecurity tooling such as SIEM (Tenable), Microsoft Defender for Vulnerability Management, deployed CrowdStrike (endpoint detection and response), Purview, CSPM, DLP, Network Access Control and email security posture management tools across Acrisure Partners
• Developed and maintained security policies and procedures, ensuring compliance with industry standards and regulations such as GDPR, NIST, PCI-DSS and CSF
• Security designs across Azure services integration with other services, maintaining uncompromised data flow
• Reviewing and approving all product designs and scoping of pen tests when required, streamlining DEVSECOPS processes for securing CI/CD pipelines

Lead Cyber Security and Compliance Architect - NatWest

(2022-03 - 2023-02)

• Liaising with all stakeholders on the Journey to the cloud transformation program to create a security blueprint
• Reviewed and approved all cloud solutions designs for the program from a security architecture viewpoint
• Led Zero trust strategy brainstorming sessions to produce a design and implemented it across NatWest Cloud comprising of GCP, AWS and AZURE Cloud
• Designed HLD/LLD for Identity Access management and created control patterns, identifying best practices around user access controls in the NatWest cloud
• Led security tooling stack for NatWest cloud platforms such as CSPM, CSM, CASB, DLP and Identity Access Management
• Carried out security assessment inclusive of vulnerability assessments, assuring authentication methods, application penetration testing, review of SAST and DAST results, IBM Mainframe and Network devices
• Responsible for assuring project implementation aligns with PCI DSS, ISO 27001 applicable scope and requirements
• Engage third-party vendors and stakeholders on diverse microservices and OT technologies, aligning with NatWest security policies
• Defined threat model constructs while developing cloud security solution designs for AWS and Azure, with a blueprint of technical security controls and corresponding roadmaps
• Member of the Technical Design Authority (TDA) covering cloud and security activities
• Led application threat modelling and security assessment of applications and report platforms such as Power BI

Enterprise Security and Solutions Architect - Direct Line Group

(2019-07 - 2022-03)

• Led security architecture for the Technology Transformation Programme within the CISO office
• Developed appropriate technical mitigations, controls, and risk policies across various DLG business divisions highlighting all security-critical paths in line with Government Digital Service standards
• Provided security guidelines for datacentre migration, GCP, Azure, and AWS projects within tight budget and timelines
• Defined Security Architectural principles for Zero Touch architecture in line with information security mandatory requirements for Azure, AWS, and GCP based on the NIST cloud security framework
• Developed and managed reference architecture and secure design patterns based on the Zero Trust model aligned to Security Strategy and Roadmaps
• Led as an interface between business and technology, ensuring proper translation and understanding of all business-driven technologies such as CI/CD automation tooling and O365 security compliance
• Responsible for approving all security-related third-party designs, giving security assurance of system practice, imploring CIS Benchmarks for data migrations, application integration, and infrastructure projects
• Created high-level designs for DLG Technology Transformation Program security tooling and integration such as LogRhythm, FIM, IDS/IPS, DLP, Carbon Black endpoint protection, CyberArk, and PKI within the PCI DSS environment
• Led the security assurance for all the applications being implemented as part of the program, such as Power BI, AWS sage maker and Snowflake

Lead Enterprise Cloud Security and Solutions Architect - London & Quadrant

(2017-08 - 2019-05)

• Supported the office of the Director of Architecture in aligning business context with IT strategies and helped define justification of IT strategic choice, including CapEx/OpEx costs, providing risk mitigation, benefits, and timeline solution
• Lead Risk management assessment and threat modelling across various cloud application projects
• Developed and maintained architecture principles, guidelines, standards, and procedures
• Engaged with stakeholders as a member of the enterprise architect review board and technical decision authority on IT roadmap, assisting in defining Cloud First as a solution strategy
• Created technical and managerial level reports and risk assessments for Cloud-based applications and infrastructure
• Designed Security solutions and roadmaps to address L&Q Modern workplace complex business challenges across a broad portfolio, communicating them clearly both within the business team and other stakeholders
• Organised workshops for labelling and data Classification process implementation for AIP Implementation
• Worked with business development and engineering teams to simplify security requirements and develop security responses for vendor bids
• Produced cloud security framework based on ISO27001, ISO27017/18 and NFR tooling for all third-party vendors
• Developed and presented Security technology overviews to Stakeholders such as Identity Access Management, Data Loss Prevention, Cloud Security, and Disaster Recovery as a service
• Review, recommend, and implement security controls across the cloud platforms to facilitate compliance
• Engaged stakeholders for O365 adoption, produced an overview for aligning O365 IT strategy with security compliance
• Strategic design of IoT Smart Building for Building Connectivity roadmap across L&Q current and future developments
• Designed Enterprise SD-WAN solutions across L&Q sites and for the IoT business connectivity programme
• Designed all required security controls on Azure platforms such as encryption, MFA, Identity Management, WAF/NGF firewalls, Advanced Threat Analytics, Azure Information Protection (AIP) and Azure Vault
• Designed the HLD and LLD for Azure Cloud networking inclusive of all required peerings for ExpressRoute and vNETs between subscriptions
• Assessed Identity solutions such as OCTA, HelloID, Sailpoint, and MIM for L&Q
• Designed security framework for L&Q IoT smart devices project for building management systems and reporting
• Assessed SEIM tooling vendors such as Qualys, LogRhythm, and Tenable and designed HLD for Tenable integration
• Designed HLD and LLD for MaaS360 MDM migration to Intune MDM and scoping required security compliance policies

Senior Security Solutions Architect - Capita (Office of Rail and Road)

(2017-03 - 2017-08)