Experience Summary
An IT GRC professional with over two decades of experience, specializing in building, assessing, and optimizing security and risk programs. The professional has a proven track record of quantifiable success, including: Reduced audit findings: Liaising with external auditors to systematically decrease high-risk findings year-over-year, leading to stronger compliance postures. Improved efficiency: Streamlining IT processes using frameworks like HITRUST and COBIT, reducing manual effort and saving over [X number] of hours annually. Enhanced compliance and governance: Developing and implementing comprehensive security and risk programs that protected sensitive data and supported business goals. Strengthened executive communication: Bridging the gap between technical teams and executive leadership by translating complex issues into actionable, strategic initiatives. An MBA and certifications, including CISM, CCSFP, and CISA, provide a strong foundation for delivering robust and compliant technology operations.
