Wale Koleosho

Wale Koleosho Hereford 📞 - 📧-Professional Summary Proficient in managing teams and executing Agile projects, specialising in IAM/PAM workflows and access lifecycle testing. Expertise in API testing, functional and non-functional QA, and cloud security testing, ensuring effective authentication, MFA, and role-based access controls. Experienced in secure onboarding, user provisioning, and Salesforce testing, with a strong commitment to security compliance and GRC principles. Focused on utilising CI/CD pipelines for efficient delivery and test management tools for audit logging validation, with aspirations to enhance skills in threat monitoring and SIEM awareness. Work History Senior QA Analyst | Orderbird GmbH, Berlin Nov 2023 – June 2025 Company Overview: Payment Innovation • • • • • • Led QA for SoftPOS and POS systems integrated with Nexi and Cybersource for secure payment processing. Validated merchant onboarding and transaction APIs (e.g. /merchants, /transactions, /devices) using Postman and Charles Proxy. Performed authentication testing for OAuth2 token management, session expiry, and error handling. Validated access control workflows through Salesforce, ensuring correct role provisioning and activation. Contributed to test plans covering device pairing, entitlement logic, and privilege boundaries. Liaised with DevOps and Security to validate admin access boundaries for SoftPOS and POS systems using Azure role-based controls and Microsoft PAM logic for elevated session testing. Senior QA Analyst | Total Processing Jan 2022 – Oct 2023 Company Overview: Payments / Fintech • • Delivered QA for KYC and merchant onboarding APIs integrated with Salesforce and internal provisioning systems. Validated API endpoints for identity verification, document upload, access role assignment, and fraud flags. • • • • • Simulated onboarding flows using Postman collections, testing both successful and rejected use cases. Collaborated with developers and security leads to confirm least privilege and access escalation rules. Supported API response validation, negative testing, and token expiry handling. Validated token management and access roles with a focus on enforcing least privilege across development and operations teams. Participated in internal access reviews, helping the security team simulate escalation scenarios using Azure AD PIM (Microsoft PAM) features during SOC2 compliance preparations. QA Engineer | WANdisco Oct 2021 – Dec 2021 Company Overview: Data Migration / Cloud • • • Tested data pipelines between Hadoop, AWS, and Azure with a focus on integrity, permissions, and migration accuracy. Participated in UAT cycles validating access permissions, error handling, and audit trail consistency. Gained exposure to IAM roles in cloud and secure endpoint testing in distributed systems. Senior QA Analyst | Pretty Little Thing, Manchester Oct 2018 – Sep 2021 • • • • • • Led frontend and backend QA teams, subsequently overseeing PLT mobile app QA. Developed end-to-end test cases for various devices and updated regression packs. Conducted testing for iOS and Android applications alongside web functionality. Utilised Eggplant and Selenium for automation, executing tests through Jenkins. Collaborated with stakeholders and analysts to strategise QA activities. Employed Agile methodologies to enhance team performance and testing results. Lead Software Tester | Kompli Global / Canddi Ltd, Manchester Jan 2018 – Sep 2020 • • • Managed sprint planning, test case creation, and daily stand-ups to enhance team efficiency. Conducted functionality and usability testing for multiple SaaS tools. Mentored junior QAs, establishing best practices for quality assurance. • Performed regression, cross-browser, and UAT testing to ensure product reliability. Software Test Consultant | Express Gifts Ltd / Qualitest, Accrington Feb 2017 – Oct 2017 • • • Executed SIT, UAT, and performance testing for web applications. Utilised JIRA for effective test management and defect tracking. Developed SOAPUI test scripts in collaboration with BAs to ensure comprehensive test coverage. Managed Platform Engineer | SolutionsPT Jan 2016 – Nov 2016 Company Overview: Industrial IT Solutions • • • • • • Managed server-level user access provisioning and deprovisioning using Active Directory. Implemented privileged access workflows, password policies, and session management practices. Acted as internal consultant on access reviews, credential lifecycle management, and platform onboarding. Supported internal audit and compliance reviews using privileged access tools such as CyberArk and BeyondTrust, aligning access controls with security policy requirements. Contributed to testing and validation of password vaults and session recording setups, leveraging Thycotic for secure credential handling and privilege session logging. Collaborated with IT security team to evaluate feasibility of adopting Microsoft PAM features introduced with Server 2016. IT First Line Engineer | NHS Trust Jan 2015 – Dec 2015 Company Overview: Healthcare IT • • • Supported account creation, access change, and termination processes across clinical and admin systems. Used Active Directory for role assignment, login troubleshooting, and remote access configuration. Enforced access controls across critical systems like EPR (BEDMAN, ICE, PAS). • • Maintained privileged account inventories and escalated high-risk access issues, contributing to local adoption of BeyondTrust and Thycotic tools for least privilege enforcement. Documented access provisioning steps to align with NHS security policy and early PAM practices around identity and session control. Skills • • • • • • • • • • • • • IAM/PAM Workflows & Access Lifecycle Testing CyberArk, BeyondTrust, Thycotic (Delinea), Microsoft PAM (Azure AD PIM) API Testing (Postman, Charles Proxy) Functional & Non-Functional QA Authentication, MFA, RBAC Secure Onboarding & User Provisioning Salesforce Testing CI/CD, Agile Delivery Cloud Security Testing (AWS, Azure) SIEM Awareness, GRC Principles Audit Logging Validation Threat Monitoring Team Leadership Education BSc (Hons) Business Computing with IT University of Salford – Manchester | Graduated: 2014 | Upper Class Honours Foundation Degree in Computer Network Security Manchester College | 2011 Certifications • • • • • • ISC2 Certified in Cybersecurity Certified Scrum Master Google Cybersecurity Action Team IBM Cybersecurity Analyst Path Palo Alto Networks Multi-Course Series CompTIA A+, Network+, Security+ (Theory Level Completed)