
Experienced Security Risk & Compliance professional with over 10 years in governance, risk, compliance (GRC), security engineering, and cloud security. Led risk assessments, third-party risk programs, and audits aligned with NIST 800-53, ISO 27001, SOC, and PCI standards. Translated complex security risks into actionable recommendations for executive leadership. Managed vulnerability assessments and enhanced organizational security posture through effective risk management strategies.