Skills
• Broad knowledge in Risk Management & Methodology Development, Information Security & Control Testing
• Execute & Manage IT Auditing, Cybersecurity Control & Issue Remediation Testing (IRT) (DE & OE)
• Develop risk-based Audit Plans, Test Procedures, RFIs, Risk Methodologies, Matrices
• In-depth knowledge of frameworks for Project Management, IT Audit & Assurance (PMLC, COBIT, COSO, IPPF, GTAG, CoCo, CMMI, NIST, ITIL, ISO, ITGC, ITAC, SOX/CSOX, OWASP, PCI DSS, SDLC)
• Cloud Security
• Identity & Access Management (IAM)
• Data Protection & Governance
• Security Architecture & Infrastructure Security
• Threat & Vulnerability Management
• Utilizing Power BI & Artificial Intelligence (AI)
• BCDR / DRP / Operational Resilience
• Continuous learning/training courses and Continuing Professional Education (CPEs)/Professional Development Units (PDUs)
About
Seasoned, multi-disciplined and results oriented Information Technology (IT) Risk and Senior Cybersecurity professional with 15+ years of experience delivering IT Audit, Control Testing (DE & OE), Cyber Security Assurance and Cloud Security Governance across private & public sectors, including major Canadian financial institutions. Proven track record in evaluating enterprise controls, strengthening cyber resilience, and ensuring compliance with ISO/IEC 27001, NIST, ISF SoGP, OSFI, ONFR, and internal enterprise standards.
Expert in assessing Identity & Access Management (IAM), data protection, network security, BCDR, physical security, cloud security, and governance controls across hybrid environments. Recognized for strong stakeholder engagement, analytical depth, and the ability to translate complex risks into actionable insights. Continually building/maintaining solid relationships & credibility with colleagues & all levels of management. Exceptional strategic decision making, leadership & organizational abilities with proven ability to consistently execute projects on-time & on-budget.
Profile Photo
