Skills
GRC Program Development & Oversight
ISO/IEC 27001:2022 Lead Auditing
SOC 2 Readiness & Control Mapping
Microsoft SSPA Compliance Support
Risk Assessment & Mitigation Planning
Internal Audits & Corrective Action Tracking
Policy & Procedure Development
Third-Party Risk Management
Regulatory Compliance (ISO, SOC 2, GDPR)
Security Awareness & Governance Support
About
Information Security professional specializing in GRC with hands-on experience in compliance audits, risk assessments, and policy implementation. CEH Master and ISO/IEC 27001:2022 Lead Auditor certified, with a strong understanding of regulatory frameworks and industry standards. Passionate about helping organizations build robust security governance and achieve continuous compliance.
Profile Photo
