Summary
Overview
Work History
Education
Skills
Certification
References
Languages
Timeline
Generic

RICHARD KWAME APPIAH

Takoradi & Accra

Summary

Cybersecurity Professional with 9 years of experience in delivering security solutions in the financial, telecommunications, and critical infrastructure sectors. Expertise in incident investigation and monitoring using SIEM platforms, alongside offensive security practices like red team operations and penetration testing. Skilled in governance and compliance with ISO/IEC 27001:2022, and adept at aligning technical remediation efforts with executive security reporting.

Overview

10
10
years of professional experience
1
1
Certification

Work History

Senior Systems & Applications Specialist / Data Center NOC Support

Bank of Ghana (FICSOC) - Virtual InfoSec Africa
01.2023 - Current
  • Monitored network and application performance using SIEM and other tools to identify and resolve issues proactively
  • Lead technical investigations into incidents, managing end-to-end documentation
  • Monitor data center infrastructure (power, cooling, cabling, hardware)
  • Supported integration of security tools and applications into existing infrastructure, enhancing overall system security
  • Provide escalation support during high-severity incidents
  • Coordinated with vendors and contractors for timely equipment delivery and installation, ensuring project deadlines were met
  • Ensure uptime, availability, and security of data center facilities

Penetration Tester / External IT Audit Representative

Sophies Group
07.2019 - 11.2022
  • Executed red team operations, including phishing simulations and payload delivery, to identify and exploit security weaknesses
  • Assessed infrastructure vulnerabilities using industry-standard tools and scripts
  • Created comprehensive penetration testing reports and remediation plans for executive review, facilitating informed decision-making
  • Conducted static and dynamic code analysis on custom applications to uncover vulnerabilities and enhance security posture
  • (Top Archive) Ghana, Nigeria & Tanzania

Equipment Audit / Commercial Representative

Helios Towers Ghana
03.2021 - 03.2022
  • Conducted data quality checks and validation for 500+ tower sites to ensure accuracy and reliability
  • Generated analytics reports and insights to guide operational improvements
  • Coordinated with engineering teams to monitor EPA allowances and optimize power usage
  • Assisted in telecom audits by reconciling field data with GIS mapping tools to enhance data integrity
  • Developed risk mitigation and compliance trackers for key stakeholders
  • Provided support for contract document verification and data entry management

Penetration Tester / External IT Audit Representative

Sophies Group
02.2020 - 09.2020
  • Implemented breach detection protocols to enhance incident response capabilities
  • Recommended improvements in perimeter defenses and endpoint protection to strengthen overall security posture
  • Audited system configurations, access controls, and firewall policies
  • Conducted assessment of physical critical infrastructure security to identify vulnerabilities and recommend improvements.
  • Trained over 60 staff in phishing awareness and basic cyber hygiene to foster a security-conscious culture
  • Supported hotel systems migration by validating security and compliance measures
  • (Accra City Hotel, Ghana)

IT Support

GRIDCo (Ghana Grid Company Limited)
09.2017 - 09.2018
  • Delivered technical support, resolving hardware/software issues for internal staff to minimize downtime
  • Provided first-line support on Active Directory and Exchange-related issues, facilitating effective user access and communication
  • Maintained network uptime by assisting in backup/restore operations, ensuring data integrity and availability
  • Installed security patches and anti-malware tools across multiple systems
  • Collaborated on the rollout of new workstations and cabling infrastructure

IT Support - (MIS)

Volta River Authority
03.2016 - 05.2016
  • Maintained and updated the MIS system for accurate data reporting.
  • Delivered technical support to staff, resolving hardware, software, and network issues to minimize downtime.
  • Troubleshot network connectivity and system errors, restoring functionality to enhance user experience.
  • Facilitated user support for email setup, password resets, and software installations, ensuring seamless access to critical tools.
  • Installed and configured computers, printers, and other IT equipment.
  • Backed up critical data and ensured systems were running smoothly.
  • Assisted in managing IT inventory and documentation to ensure accurate tracking of assets.

Education

BSc - Information Technology

Kwame Nkrumah University of Science and Technology
01-2027

Associate Degree - Information Technology

Ghana Communication Technology University
01-2016

Ethical Hacking -

IPMC Institute of Technology

Critical Infrastructure Protection -

United States Department of Homeland Security

DoD Controlled Unclassified Information Training -

United States Defense Counterintelligence and Security Agency

Introduction to Risk Management Framework -

United States Defense Counterintelligence and Security Agency

Risk Management for Department of Defense Security Program -

United States Defense Counterintelligence and Security Agency

Introduction to Physical Security -

United States Defense Counterintelligence and Security Agency

ISO/IEC 27001:2022 Certified Auditor -

Mastermind Assurance

Initiating and Planning Projects; Managing Project Risks and Changes -

University of California, Irvine

Skills

  • Security monitoring
  • Incident response
  • Vulnerability assessment
  • Risk assessment
  • Access Control
  • Compliance Management
  • Policy Drafting
  • Non-Conformance Tracking
  • Process Optimization
  • IT Documentation
  • Excellent Analytical Skills
  • Excellent Communication Skills
  • Excellent Documentation Skills

Certification

• TÜV SÜD - ISO 27001:2022 Certified Lead Implementer
• EC-Council - Certified SOC Analyst
• The SecOps Group - Certified Network Security Practitioner
• TCM Security - Practical Ethical Hacking
• TCM Security - Practical Windows Forensics
• Oracle University - OCI Architect Associate
• CISCO Networking Academy - Network Defense
• LogRhythm (Exabeam) - Platform Administrator
• LogRhythm (Exabeam) - Security Analyst
• OneTrust - Incident Management Expert
• PMI / Process Management International - Lean Six Sigma White Belt

References

Upon Request

Languages

  • Fanti
  • Twi
  • English
  • Fanti
  • Twi

Timeline

Senior Systems & Applications Specialist / Data Center NOC Support

Bank of Ghana (FICSOC) - Virtual InfoSec Africa
01.2023 - Current

Equipment Audit / Commercial Representative

Helios Towers Ghana
03.2021 - 03.2022

Penetration Tester / External IT Audit Representative

Sophies Group
02.2020 - 09.2020

Penetration Tester / External IT Audit Representative

Sophies Group
07.2019 - 11.2022

IT Support

GRIDCo (Ghana Grid Company Limited)
09.2017 - 09.2018

IT Support - (MIS)

Volta River Authority
03.2016 - 05.2016

BSc - Information Technology

Kwame Nkrumah University of Science and Technology

Associate Degree - Information Technology

Ghana Communication Technology University

Ethical Hacking -

IPMC Institute of Technology

Critical Infrastructure Protection -

United States Department of Homeland Security

DoD Controlled Unclassified Information Training -

United States Defense Counterintelligence and Security Agency

Introduction to Risk Management Framework -

United States Defense Counterintelligence and Security Agency

Risk Management for Department of Defense Security Program -

United States Defense Counterintelligence and Security Agency

Introduction to Physical Security -

United States Defense Counterintelligence and Security Agency

ISO/IEC 27001:2022 Certified Auditor -

Mastermind Assurance

Initiating and Planning Projects; Managing Project Risks and Changes -

University of California, Irvine
RICHARD KWAME APPIAH