Result-driven and highly skilled Sr. GRC consultant with a proven track record of developing and implementing Audit, Risk, Compliance, Privacy & Security strategies. Engaged in different roles to address Security challenges and develop a solution that is repeatable, measurable, and valuable.
Seeking a challenging role to leverage my expertise:
• In enterprise risk management and contribute to the success of a dynamic organization
• In vendor risk assessment, due diligence, and contract management to ensure the security and compliance of third-party relationships
• In developing and implementing effective audit and compliance programs, ensuring adherence to industry standards and regulatory requirements related to ISO 27000x, SOC2 & HITRUST
• To safeguard organizational assets, sensitive-confidential & intellectual-proprietary information and ensure data protection in a rapidly evolving threat landscape and promoting a culture of data privacy within an organization
• To help organizations meet and maintain PCI DSS requirements, ensuring the security and integrity of sensitive cardholder data
• In demonstrating skills with ISO27001:2022, PCI DSS 4.0, SOC2, Vendor/Third-party/Supplier Risk, Enterprise Risk, Data Privacy, HITRUST CSF, NERC CIP, NIST CSF
• Working with RSA Archer, One Trust, OnSpring, BitSight, MyHCF and working with Custom GRC platforms/tools and develop strategy to build such in SharePoint for clients with controlled budgets