Gifty Tetteh

Governance

• Establish, execute, and uphold governance policies, procedures, and controls to ensure adherence to applicable regulations and industry standards, including ISO 27001 and PCI DSS.
• Collaborate with senior management to ensure that governance structures and processes are effective in managing the bank's activities.
• Assist in establishing organizational structures that clearly define roles and responsibilities for risk management and compliance functions.

Risk

• Assist and conduct the risk assessment process by identifying and evaluating potential risks, and providing guidance on appropriate risk management strategies.
• Monitor key risk indicators (KRIs), and support the development of comprehensive risk reporting frameworks for management oversight.
• Ensure the deployment of risk controls, and continuously monitor their effectiveness through regular tracking and evaluation.

Compliance

• Coordinate internal and external audits, addressing findings, and implementing corrective actions.
• Facilitate security awareness training for employees to ensure compliance with regulatory bodies.
• Ensure the bank's operations comply with relevant local and international regulatory requirements.

• Investigating, documenting, and reporting on any information security (InfoSec) issues, as well as emerging trends.
• Monitor, manage, and configure security tools, review incidents to assess their urgency, and escalate incidents.
• Reviews the most recent SIEM alerts to assess their relevance and urgency.
• Oversees and configures security monitoring tools.
  Uses threat intelligence, such as updated rules and indicators of compromise (IOCs), to pinpoint affected systems and the extent of the attack for appropriate escalation.
• Perform in-depth threat intelligence analysis to find the perpetrator, the type of attack, and the data or systems impacted.
• Investigate suspicious activities, contain them, and prevent them.
  Analysis of phishing emails reported by internal end users.
• I doubled as a GRC officer.

• Collaborated with team members to ensure compliance with banking regulations.
• Organized files and documentation for easy access and retrieval.
• Maintained accurate records of all activities performed throughout internship period.
• Assisted with event planning, support and execution of virtual and in-person engagements.
• Assist in due diligence and verifying documents for account opening.
• Answered phone calls and responded to emails in line with company policies.