Adewale Odeja

CEO

Canada11 yrs 8 mos experience

Highly Stable

Key Highlights

Built 25+ CloudTrail detections for AWS security.
Reduced audit findings by 90% in a banking environment.
Developed serverless alerting pipelines for incident response.

Stackforce AI infers this person is a Cloud Security Analyst with expertise in AWS and incident response.

Contact

Skills

Core Skills

Cloud DetectionIncident ResponseSecurity OperationsCloud Security

Other Skills

SplunkSecurity InformationEvent Management (SIEM)AWS CloudTrailMITRE ATT&CKTerraformAWS LambdaEventBridgeSNSSlackAlert LogicAmazon Web Services (AWS)IT Risk ManagementPCI DSSsigma rules

About

I build and tune AWS threat detections, investigate incidents, and create response workflows that help security teams move faster. I bring 8 years of security operations experience from a digital banking platform handling 10M+ daily transactions, where I worked across incident coordination, log analysis, audit remediation, access control, and escalation workflows. I now focus on cloud detection and response, using AWS telemetry, Splunk, Terraform, and automation to turn attacker behavior into practical defensive controls. Selected work: • Built 25+ CloudTrail detections for IAM privilege escalation, credential abuse, and data access abuse, mapped to MITRE ATT&CK for Cloud • Developed a serverless alerting and response pipeline using CloudTrail, EventBridge, Lambda, and SNS/Slack • Built Splunk dashboards, detection logic, investigation playbooks, and alert triage workflows • Completed 30+ investigation labs across phishing, identity compromise, Active Directory attacks, network intrusions, and malware analysis • Reduced audit findings by 90% and helped close 200+ critical vulnerabilities annually in a high-volume banking environment I’m targeting cloud detection, incident response, and security operations roles focused on AWS, Splunk, and investigation workflows.

Experience

11 yrs 8 mos

Total Experience

5 yrs 10 mos

Average Tenure

Current Experience

Signalroot

Independent Cloud Detection & Response Portfolio | SignalRoot

Jan 2023 – Present · 3 yrs 4 mos · Ontario, Canada · Remote

Building AWS threat detections, investigation workflows, and security automation projects. Translating offensive AWS tradecraft into practical defensive controls.
Built 25+ CloudTrail detections for IAM privilege escalation, credential abuse, and data access abuse, mapped to MITRE ATT&CK for Cloud and designed for Terraform-based deployment
Developed a serverless detection pipeline using CloudTrail, EventBridge, Lambda, SNS/Slack, and DynamoDB to validate sub-minute alerting and containment workflows
Validated detections through AWS attack simulation in Pwned Labs Electra, including IAM trust policy abuse and Lambda role exploitation
Built Splunk dashboards, alert logic, and investigation workflows to support cloud-focused SOC use cases
Authored IR playbooks, Athena query libraries, and AWS initial access guidance to improve alert triage and investigation consistency
Developed Terraform modules aligned to CIS AWS Foundations Benchmark to strengthen preventive cloud controls
Portfolio: github.com/Walentino

SplunkSecurity InformationEvent Management (SIEM)Cloud DetectionIncident Response

Independent study & certification

Cloud Security Training & Certification

Mar 2019 – Dec 2022 · 3 yrs 9 mos · Toronto, Canada / Lagos, Nigeria

Transitioned from payment security operations into cloud security through focused independent study, hands-on AWS attack simulation, and practical lab work in detection engineering and cloud defense.
Earned ACRTP along with AWS Security Specialty, AWS Solutions Architect Professional, AWS DevOps Engineer Professional, CKA, and Terraform Associate certifications to deepen AWS security, infrastructure, and automation capability
Completed 300+ hours of hands-on AWS attack simulation through ACRTP, building practical understanding of IAM abuse, privilege escalation, Lambda exploitation, and cross-account attack paths
Founded a GTA Pwned Labs study group of 8 to 12 practitioners, facilitating weekly cloud security labs and detection engineering workshops
Strengthened cloud security capability through repeated lab work, certification-backed study, and peer-led practice across AWS, Terraform, Kubernetes, and detection-focused use cases

Amazon Web Services (AWS)Cloud SecurityIncident Response

First bank of nigeria plc

Head, E-Business Regional Support → Security Operations Lead

Mar 2011 – Feb 2019 · 7 yrs 11 mos · Marina, Lagos

Led security operations across a high-volume digital banking platform serving millions of users and processing 10M+ transactions daily.
Triaged and coordinated response to fraud events, system intrusions, and anomalous access attempts, supporting timely containment and remediation within SLA
Investigated PCI DSS and ISO 27001 issues by analyzing server, application, and database logs, correlating events across systems to identify root causes and control gaps
Designed log collection, threshold-based alerting, and escalation workflows, improving visibility and supporting faster response by the central SOC team
Implemented PCI DSS Level 1 and ISO 27001-aligned controls across digital channels, strengthening security posture in a heavily regulated environment
Reduced audit findings by 90% over an 8-year period through remediation tracking, control improvement, and disciplined follow-through with engineering teams
Served as the primary technical liaison between engineering teams and external auditors, improving coordination during audits and remediation cycles
Designed and enforced least-privilege access controls across multi-tier banking infrastructure, reducing access risk across business-critical systems
Partnered with infrastructure and development teams to close 200+ high and critical findings annually while maintaining 99.9% uptime

IT Risk ManagementPCI DSSSecurity OperationsIncident Response