Prince George

Details

Skills

Regulatory Compliance - Privacy & Data Protection (PIPEDA/ provincial laws; Regulatory Compliance GDPR-EU, HIPAA & NPC)
Third-Party Risk Management (TPRM)
Stakeholder Relationship Management
Governance, Risk & Compliance (GRC)
Policy Development & Enforcement - SOPs, Manuals, Investigations, Policy Lifecycle, Policy Development & Business Continuity Planning (PCP), Employee relation/ Engagement Playbooks
Risk Assessment & Mitigation, Internal Controls & Contractual Audits
Certifications: PCI, ISO, SOC, PIMS, HIPPA
NIST/ CIS Controls Implementation
Enterprise Risk Management & Mitigation
Cybersecurity Strategy Development
Incident Reporting and Forensics
Change Management
Privacy-by-Design & Privacy Impact Assessments (DPIAs)
Security Awareness & Training Programs
Strategic communication and Influence
Collaborative Governance Leadership, Regulatory & Executive Liaison
Gap /Impact Analysis
Analytical and Problem Solving
Transformation & Process Improvement

About

Risk & Compliance Professional with 18+ years of global experience driving regulatory compliance, organizational transformation, and employee engagement across highly regulated industries. Proven ability to ensure readiness for complex regulatory landscapes, including EU directives, while fostering positive employee experiences and building agile organizations. Skilled in collaborating with cross-functional stakeholders at country, pan-EU, and global levels to enhance compliance, mitigate risk, and navigate ambiguity. Expertise spans governance frameworks (PCI DSS, SOC 1 & 2, ISO 27001, ISO 9001) and global data protection standards (GDPR, CCPA, PIPEDA, HIPAA).