Available to hire
Hello! I’m Abrak Yashim, a Governance, Risk & Compliance Analyst with 3+ years of experience bridging information technology operations and regulatory requirements. I design and maintain compliance monitoring systems, conduct security controls and vulnerability assessments, and align with standards such as ISO 27001, SOC 2, and GDPR. I enjoy partnering with cross-functional teams to identify vulnerabilities, remediate gaps, and support business objectives.
I thrive in fast-paced environments, driving incident reporting improvements and governance routines with operations, safety, and quality teams. I translate complex regulatory requirements into actionable IT policies and solutions that strengthen security posture while helping the business achieve its objectives.
Experience Level
Work Experience
Governance, Risk & Compliance Analyst at United Ground Express (UGE)
October 1, 2025 - PresentStrengthened operational compliance across airport functions by ensuring adherence to TSA, FAA, OSHA, and internal safety governance standards; contributed to a 40% reduction in non-compliance findings. Conducted structured safety and risk inspections of aircraft cabins, gate areas, and high-traffic zones, identifying 25+ procedural gaps. Redesigned documentation workflows to improve incident reporting timeliness by 55% and escalation consistency. Partnered with Operations, Safety, and QA to reinforce governance routines, boosting audit readiness scores and reducing corrective action cycles by 30%. Oversaw third-party vendor compliance for ground and cabin services, increasing vendor adherence by 20% through improved monitoring and feedback mechanisms. Delivered onboarding and policy guidance for new hires, increasing SOP adherence across shifts and reducing repeat safety violations.
Governance Risk & Compliance Specialist at Prospect Airport Services
March 1, 2024 - October 1, 2025Designed the organization's governance structure, establishing a GRC committee with C-level sponsorship that improved policy approval cycles from 45 days to 15 days and increased stakeholder engagement. Established an enterprise-wide risk assessment framework that identified and prioritized 200+ risks across the organization, enabling executive leadership to make decisions reducing financial exposure. Orchestrated GRC technology implementation, selecting and deploying an integrated platform that centralized risk, compliance, and audit management, improving operational efficiency by 45%. Streamlined incident reporting process, reducing mean time to report compliance incidents from 72 hours to 24 hours and ensuring 100% adherence to regulatory notification requirements across diverse jurisdictions. Executed role-based compliance training modules for 8 different job functions, resulting in higher audit performance and a 30% reduction in compliance violations across high-risk departments.
Information Security Analyst at Spaxel Property Management
August 1, 2022 - January 1, 2024Pioneered a company security certification process, achieving ISO 27001 and SOC 2 compliance on the first attempt, enabling expansion into new markets and securing major client contracts. Developed monthly security awareness campaigns, increasing employee security knowledge scores from 48% to 93% within one year. Introduced automated security monitoring that eliminated 25 hours of manual checks per week, enabling the security team to focus on strategic initiatives and respond to threats 60% faster. Transformed security incident response procedures, reducing average resolution time from 8 hours to 2 hours. Evaluated security practices of 45 third-party vendors and suppliers, identifying high-risk partnerships and implementing stricter requirements, reducing supply chain security risks by 72%. Partnered with IT, Legal, and HR to create a coordinated security response plan, improving cross-team communication and reducing confusion during security events by 67%.
Risk & Compliance Analyst at F&C Realty LLC
June 1, 2019 - July 1, 2022Led SOX compliance testing initiatives covering 45 critical business processes, achieving a clean audit opinion with zero material weaknesses. Developed an automated compliance reporting system that generated quarterly regulatory filings, reducing prep time from 80 hours to 12 hours per cycle. Coordinated GDPR compliance implementation across six offices and customer databases, establishing data governance controls. Implemented a regulatory change management process tracking 200+ updates annually, ensuring timely policy adjustments and ongoing compliance. Spearheaded business continuity testing across 15 critical functions, ensuring operational resilience and regulatory compliance during simulated crises. Conducted enterprise-wide risk assessments identifying 25 operational vulnerabilities, resulting in improved control implementations and risk posture.
Education
Bachelor of Science (Fine And Applied Arts - NCE Equivalent) at Kaduna State College of Education, Nigeria
January 11, 2030 - April 29, 2026Qualifications
Certified Information Systems Auditor (CISA)
January 11, 2030 - April 29, 2026Certified in Risk and Information Systems Control (CRISC)
January 11, 2030 - April 29, 2026Information Security Management System (ISMS) Certification [In view]
January 11, 2030 - April 29, 2026Industry Experience
Transportation & Logistics, Professional Services
Experience Level
Hire a Data Annotator
We have the best data annotator experts on Twine. Hire a data annotator in Newark today.