Experience Summary
Senior GRC and cybersecurity risk advisory leader with 15+ years of experience supporting regulated SaaS, healthcare, and enterprise environments. Proven background delivering cybersecurity and compliance assessments, audit readiness, remediation roadmaps, and vCISO-style advisory services across SOC 2, ISO 27001, HITRUST, PCI DSS, and FedRAMP. Experienced in translating complex regulatory and security requirements into practical, risk-based guidance for executive leadership, engineering, and product teams. Known for building unified control frameworks, improving audit defensibility, and accelerating security maturity while reducing operational friction.
