Versatile Governance, Risk and Compliance (GRC) professional with diverse and progressively senior roles within domestic and international financial/banking, technology and professional consulting sectors. * Developed and lead a broad range of programs spanning management and governance of risk, compliance and operational effectiveness. * History of success building and delivering risk and controls frameworks and assessments across multiple sector and industry regulations including SOX, PCI, FISMA, GLBA, BSA, FFIEC, ISO and NIST. * Strategic, analytical with strong business acumen. Utilizes a highly developed consultative leadership style and skills to establish and maintain highly successful programs and teams. * Demonstrated history of delivery and resolving significant risks, organizational challenges and sanctions involving stringent requirements and tight resolution deadlines. PROFESSIONAL ACTIVITES AND EXPERIENCE Independent Contracting and Entrepreneurial Activities: 8/2014 - 1/2018 Outreach, Seattle WA 9/2018 - Present Senior Security Consultant * Provided subject matter risk and compliance expertise to prepare company's SOC2 and ISO certifications. * Reviewed and provided guidance on improvement of the adequacy and effectiveness of related controls. * Provided guidance and direct development/revision of policies and procedures across SOC2 and ISO domains, incident response and BCP testing and risk management. Privacy Training/Professional Development, International Association of Privacy Professionals 2/2018 - 8/2018 * Obtained privacy training to support management and implementation of new EU privacy regulations. * Completed the international association of Privacy Professionals "GDRP Ready" training and implementation workshops. * Obtained CIPP/E and CIPM certifications.
Description
