top of page

Resume

​​

 

Shola Hassan, MBA

Cybersecurity GRC Analyst | Vendor Risk | ISO 27001 | Compliance & Audit Readiness

 

Calgary, Alberta, Canada
Email: sholahassan11@gmail.com
LinkedIn: linkedin.com/in/hassanshola

Profile

I am a cybersecurity governance, risk, and compliance (GRC) professional with a strong foundation in operational risk, third-party governance, and business process control.

My work focuses on translating frameworks such as ISO 27001, SOC 2, and PCI DSS into practical, business-aligned controls. I design and implement risk registers, vendor risk management programs, compliance trackers, and policy frameworks that improve visibility, reduce exposure, and support audit readiness.

I bring over a decade of commercial leadership experience across FMCG, engineering, and education sectors, where I managed risk registers, governed third-party relationships, and aligned business decisions with internal controls and contractual obligations.

This combination enables me to bridge the gap between security requirements and real-world business execution.

Core Skills
  • Governance, Risk & Compliance

  • Risk registers, issue tracking and reporting

  • Policy development and control mapping

  • Compliance tracking and audit readiness

  • Frameworks & Standards

  • ISO 27001 readiness and control alignment

  • SOC 2 and PCI DSS exposure

  • Control mapping to business processes

  • Third-Party Risk Management

  • Vendor risk assessments and due diligence

  • Vendor tiering and risk classification

  • Contract governance and monitoring

  • Business & Stakeholder Engagement

  • Cross-functional collaboration

  • Executive reporting and dashboards

  • Commercial risk alignment

Work Experience

Cybersecurity GRC Analyst - Top Group Technologies
Remote | Jan. 2025 – Present

  • Build practical GRC artifacts, including risk registers, ISO 27001 readiness assessments, vendor questionnaires, and compliance trackers.

  • Design third-party risk management (TPRM) programs, including vendor tiering, due diligence workflows, and remediation tracking.

  • Map business processes and controls to frameworks such as ISO 27001, SOC 2, and PCI DSS in lab and project environments.

  • Translate technical and framework language into clear, non-technical explanations for business stakeholders.

Commercial Manager - British Council
Nigeria | Feb. 2021 - Mar. 2024

  • Maintained and updated a commercial risk register, tracking key risks, mitigation actions, ownership and status across business units

  • Managed third-party relationships and contracts, ensuring performance expectations, obligations and risk exposure were clearly defined and monitored

  • Worked cross-functionally with finance, operations and program teams to align commercial decisions with internal controls, policies and compliance requirements

  • Produced structured reports and dashboards for leadership, combining revenue performance with key risks, issues and mitigation progress

  • Identified operational and partner-related risks early and implemented practical controls to reduce exposure while supporting business growth

Area Sales Manager – Bosch (Power Tools)
Nigeria | Feb. 2019 – Feb. 2021

  • Managed a sales territory covering wholesale, retail, and project-based customers for Bosch power tools and equipment.

  • Forecasted demand, monitored stock levels, and reduced the risk of stock-out and over-stock situations across key accounts.

  • Trained distributors and retailers on safe and proper use of tools, helping to reduce product misuse and potential liabilities.

  • Used data from the field to identify risks and opportunities in pricing, credit, promotions, and product mix.

Business Development Manager - Bosch (Thermotechnology)
Nigeria | May 2017 - Feb. 2019

  • Developed new business for residential thermotechnology solutions through distributors, installers, and project partners.

  • Assessed partner capability and reliability before onboarding, considering service quality, coverage, and reputational risk.

  • Worked with technical teams to ensure projects complied with safety standards, manufacturer guidelines, and local regulations.

  • Provided structured feedback from the field to guide pricing, product positioning, and channel strategy.

Earlier Career – FMCG Sales & Leadership
PZ Cussons, Unilever and other FMCG roles | Nigeria

  • Started in frontline sales at PZ Cussons Nigeria, managing territories, distributors, and trade visibility.

  • Progressed to national-level responsibility at Unilever, leading teams and helping launch an innovative storage-type water purifier.

  • Gained deep experience in market execution, route-to-market design, people leadership, and balancing growth with brand and regulatory requirements.

Education

  • Cybersecurity Diploma - Completed 2025 - Alberta Educational Centre (AEC), Canada

  • MBA, Marketing - Completed 2024 - University of Nigeria, Nsukka, Nigeria

Certifications

  • Certified in Cybersecurity (CC) – ISC²

  • CompTIA Security+

  • CompTIA CySA+

  • CompTIA A+

  • IT Fundamentals PRO – TestOut

  • PC Pro – TestOut

​​
Tools & Technologies

  • GRC concepts: risk registers, issue tracking, TPRM workflows, policy frameworks

  • Productivity: Microsoft 365 (Excel, PowerPoint, Word), SharePoint, Teams

  • Learning and labs: basic exposure to networking, operating systems, security tools and virtual lab environments from cybersecurity studies

bottom of page