Skills
Frameworks & Standards – NIST CSF, NIST 800-53, ISO 27001, PCI DSS v4.0, SOC 2, RMF, AML/KYC, OWASP
GRC / Collaboration Tools – ServiceNow, JIRA, Confluence, SharePoint
Risk & Security Exposure (Governance Context) - Vulnerability Management (Rapid7, Nessus), IAM Governance(Active Directory, Azure AD, Sailpoint, CyberArk PAM)
About
Cybersecurity and GRC professional with collectively 5 years of focused experience supporting cybersecurity risk management, regulatory compliance, and audit readiness across banking, technology and regulated environment such as PCI-DSS. Proven expertise in enterprise risk assessments, control gap analysis, control testing, and compliance operations aligned with NIST, ISO 27001, PCI-DSS and SOC2 frameworks. Experienced in collaborating with Legal, Compliance, Security, IT, and business stakeholders to strengthen governance processes, support audits, and improve compliance maturity. Actively seeking a GRC role to enhance organizational risk posture and regulatory alignments.
• Master of Information Security and Privacy (Cybersecurity) from the University of Calgary, Canada, with hands-on experience supporting enterprise risk management, compliance operations, and audit readiness within regulated and high-risk environments.
• Conducted risk assessments, performed control gap analysis, and mapped controls to NIST, ISO/IEC 27001, PCI DSS, and SOC 2, supporting internal and external audits through evidence collection and issue tracking.
• Supported and led cybersecurity, fraud, and compliance risk assessments across digital asset platforms, cardholder data environments, and enterprise IT systems, ensuring alignment with governance structures and regulatory expectations.
• Committed to continuous professional development and staying current with evolving regulations, industry standards, and emerging risk trends.
Profile Photo
