Michael Okpalefe
Elkhorn
Summary
Results-driven Information Security Analyst with 5+ years of experience specializing in Governance, Risk, and Compliance (GRC). Skilled in developing and implementing robust security strategies, conducting risk assessments, and ensuring regulatory compliance to protect organizational assets. Proficient in leveraging GRC tools and frameworks to enhance data integrity and streamline compliance processes. Adept at fostering a culture of security awareness through effective training and policy development. Committed to delivering innovative solutions that align with organizational goals and mitigate risks in a rapidly evolving cybersecurity landscape.
Overview
7
7
years of professional experience
1
1
Certification
Work History
Sr. Information Security Analyst GRC
Nebraska Medicine / UNMC
02.2025 - Current
- Strengthened access controls via rigorous review of user permissions based on least privilege principles and role-based restrictions.
- Coordinated disaster recovery efforts during high-profile cyber attacks to minimize downtime and restore business operations promptly.
- Safeguarded sensitive data by implementing multi-factor authentication processes for all user accounts.
- Mitigated cyber threats through timely identification, containment, and resolution of incidents.
- Championed a culture of continuous improvement by regularly reviewing and updating information security policies to reflect evolving threat landscapes.
- Streamlined incident response procedures by establishing clear roles, responsibilities, and communication protocols within the team.
- Improved system performance by optimizing configurations and identifying potential security risks.
- Managed vendor relationships effectively to ensure successful implementation of third-party solutions that met company requirements.
- Assisted legal department with digital forensics investigations during cases involving data breaches or other cyber incidents.
- Conducted regular audits to ensure compliance with industry standards, such as HIPAA, GDPR, and PCI DSS.
- Reduced company risk by conducting thorough vulnerability assessments and recommending appropriate remediation strategies.
- Provided expert guidance in the selection and implementation of security tools, including firewalls, antivirus software, and encryption solutions.
Information Security Analyst (GRC)
Boys Town
08.2022 - 02.2025
- Develops plans to safeguard data against accidental or unauthorized changes, damage, or disclosure
- Monitors current reports of computer viruses to determine when to update virus protection systems
- Encrypts data transmissions and erects firewalls to conceal confidential information during travel
- Conducts risk assessments and audits to ensure alignment with corporate governance structures, identifying areas of non-compliance and recommending corrective actions
- Develops and maintained comprehensive policies and procedures that comply with applicable laws and regulations, such as SOX, HIPAA, and GDPR
- Implements and managed GRC tools and frameworks to streamline compliance processes and enhance data integrity and security
- Collaborates with various departments to integrate compliance controls into business processes and IT systems, enhancing organizational adherence to legal and regulatory standards
- Facilitates training sessions for employees on compliance standards, ethical conduct, and risk management strategies to cultivate a compliance-oriented culture
- Collaborates with IT teams to ensure seamless integration of security measures into existing infrastructure.
Director of Customer Relations, Information Technology Security Administrator
Action Technology Services Inc.
01.2020 - 08.2022
- Developed and implements technical application support, risk assessments, and IT policies and procedures
- Analyzed department/job-related functionality requirements to align technology priorities with business needs
- Remains up to date on technology advancements, emerging standards, & IS regulations to meet strategic goals
- Tracked and managed controlled IT operating budgets and cost and benefit analyses for IT spending initiatives
- Deployed, monitored, and maintained system installation, upgrades, and network integration to support operations
- Collaborated with team members on network design, reevaluation, & optimization to ensure company growth
- Produced and maintains incident response protocols to mitigate damage and liability during security breaches
- Designed company-wide policies to bring operations in line with Center for Internet Security (CIS) standards
- Built and maintained trusting work relationships with various third-party intrusion detection system providers
- Displayed expert use of office applications such as Microsoft Office, including Word, PowerPoint, and Excel
- Maintained company awareness of security concerns and implements education programs for staff development
Help Desk Intern
Action Technology Services Inc.
01.2018 - 01.2020
- Assessed, troubleshot, and repaired machines like desktops and streamlined repair processes for consistency
- Increased sales by educating clients on the benefits of products and services in comparison to competitors
- Partnered with the software development team on reported errors and bugs in all newly released software
- Regularly maintained servers and systems to keep networks fully operational for users during peak periods
- Evaluated and broke-down user problems using test scripts, personal expertise, and asking probing questions
- Configured hardware, devices, and software to set up workstations for employees and synthesized information
- Showcased exceptional communication with all customers and team members on multiple technical levels
Education
Doctor of Information Technology - Information Technology
Capella University
05-2027
MBA - General Management
Grand Canyon University
05.2024
Master of Science - Cyber Security
Grand Canyon University
10.2022
Bachelor of Science - Computer Management Information Systems
Peru State College
05.2021
Skills
- Data Collection
- Data Analysis
- Reporting
- Security Metrics
- Audit support
- Regulatory Compliance
- Relationship Management
- Cross-Departmental Communication
- Process Improvement
- Threat intelligence
- Security awareness training
- Vulnerability assessment
- Risk mitigation
- Incident response
- Critical thinking skills
Accomplishments
- Trained end users on proper security protocol to minimize cybersecurity attacks.
- Educated management on how to minimize risk of cybersecurity attacks.
Certification
- Certified in Cybersecurity (CC)
- Inbound Marketing
- Certified HIPAA Security Expert
- Certified Ethical Hacker (CEH)
- CompTIA PenTest+
- Advance Leadership (NSLS)
- Foundation of Leadership (NSLS)
- CompTIA Security+
Timeline
Sr. Information Security Analyst GRC
Nebraska Medicine / UNMC
02.2025 - Current
Information Security Analyst (GRC)
Boys Town
08.2022 - 02.2025
Director of Customer Relations, Information Technology Security Administrator
Action Technology Services Inc.
01.2020 - 08.2022
Help Desk Intern
Action Technology Services Inc.
01.2018 - 01.2020
MBA - General Management
Grand Canyon University
Master of Science - Cyber Security
Grand Canyon University
Bachelor of Science - Computer Management Information Systems
Peru State College
Doctor of Information Technology - Information Technology
Capella University
Similar Profiles
Sally SchumacherSally Schumacher
Clinical Laboratory Scientist at Village Pointe Laboratory, Nebraska MedicineClinical Laboratory Scientist at Village Pointe Laboratory, Nebraska Medicine
BRE SELDENBRE SELDEN
Clinical Research Associate I at UNMC & Children's NebraskaClinical Research Associate I at UNMC & Children's Nebraska
TETEVI TETETETEVI TETE
Direct Support Professional at DDCN / Autism Center Of Nebraska (ACN-UNMC)Direct Support Professional at DDCN / Autism Center Of Nebraska (ACN-UNMC)
JOYLYN PERRONJOYLYN PERRON
Resident Assistant at Holton ManorResident Assistant at Holton Manor
Tyler KoenekeTyler Koeneke
Regional Manager at Advance Services, Inc.Regional Manager at Advance Services, Inc.