Security Compliance Leader
Analytical, results-oriented IS/IT Audit, Governance, Risk, and Compliance (GRC) leader over 19 years of experience managing enterprise-wide IT/IS security risk approach for large healthcare and IT services organizations. Passionate design thinker with an ability to harness innovation by facilitating collaboration to develop enterprise-wide security risk assessments (onsite as well as remote) for high-risk Third-Parties leveraging NIST 800-53, ISO/IEC 20243-1:2018, SIG, HITRUST CSF, ISO27001, PCI DSS, SANS CIS, and HIPAA Security Rule requirements. Proven ability to develop and implement key GRC solutions to improve outcomes and efficiency for internal audit and Third-Party Risk Assessments. A trusted advisor to business and senior executives with an ability to articulate critical issues to business risks. A skilled leader with significant experience in building and developing effective global teams and managing onshore and offshore personnel in the USA, India, Ireland, the Philippines.