Details
Skills
Governance, Risk & Compliance (GRC)
SOC 2 (Type I & Type II)
ISO/IEC 27001
GDPR
NIST CSF, NIST RMF
Risk Assessments & Risk Treatment Plans
Control Design & Control Mapping
Audit Readiness & Audit Management
Vendor Risk Management (VRM)
Policy & Procedure Development
Security & Compliance Operations
End-to-End Compliance Program Execution
Evidence Collection & Audit Coordination
Compliance Automation & Workflow Design
Security Questionnaires & Customer Trust Support
Gap Assessments & Readiness Reviews
vCISO & Advisory
vCISO Program Support
Security Governance Advisory
Compliance Strategy for High-Growth SaaS
Translating Framework Requirements into Operational Controls
Tools & Platforms
GRC Platforms: Vanta, CompAI
IAM & Endpoint Management: Microsoft Intune, Google Workspace, Kandji
Cloud Platforms: AWS (Foundational), Azure (Foundational)
Collaboration & PM: ClickUp, Notion
About
Cybersecurity and GRC professional with experience supporting SOC 2, ISO 27001, and GDPR compliance programs for SaaS organizations. Proven ability to accelerate audit readiness, streamline evidence collection, and support end-to-end compliance activities through automation and standardized workflows. Experience contributing to vCISO and GRC platform development, with a focus on practical, scalable security governance.
Profile Photo
