• Provided advisory services on, GRC program strategy and enablement, GRC Technology design and implementation, Policy lifecycle and adoption, Awareness, training and education.• Developed GRC program, Policy Management Lifecycle, Technology Implementation services.• Led and executed response to Biomedical Advanced Research and Development Authority (BARDA) for a global pharmaceutical company, ensuring control and requirement satisfaction for successful reports to BARDA and ASPR.• Led cybersecurity focused due diligence for multiple biomedical device acquisitions.• Managed multiple high-performing delivery teams by providing mentorship, guidance, and opportunities for professional growth.• Facilitated cross-functional collaboration for improved decision-making processes within internal organization.• Secured key partnerships that contributed to company's overall growth strategy and market reach.• Implemented business strategies, increasing revenue, and effectively targeting new markets.• Enhanced client delivery and success by providing outstanding relationship management and swiftly resolving issues. Fostered and solidified enduring client relationships through effective problem-solving and vibrant communication abilities.• Leveraged professional networks and industry knowledge to strengthen client relationships.• Conducted NIST CSF assessments and provided executive reporting. Presented findings, risks, and comprehensive recommendations to senior management.• Assisted clients by identifying risks, conducting control testing, and enhancing process improvement procedures. Actively pinpointed potential risks and executed mitigation strategies to reduce adverse effects on projects and business operations.

• Defined and implemented enterprise-wide risk management platform for large health care client.• Created all GRC services lines and managed delivery teams for firm.• Developed customized GRC solutions for client organizations, leading to enhanced security and minimized risk exposure. Facilitated integration of GRC tools into client environments, which streamlined workflows and improved overall efficiency.• Played instrumental role in helping organizations establish robust governance structures that facilitated decision-making processes while minimizing risks associated with non-compliance instances.• Established strong relationships with stakeholders to support successful execution of GRC initiatives.• Developed policies and procedures that aligned with organizational objectives while adhering to regulatory requirements.• Implemented risk management frameworks, enabling clients to maintain a proactive approach towards potential threats• Documented business processes and analyzed procedures to ensure they met evolving business requirements. Evaluated effects of current business processes on users and stakeholders.• Championed culture of continuous learning through regular training sessions, workshops, and knowledge-sharing initiatives aimed at enhancing staff competencies within GRC domain.• Assessed vendor products and maintained positive vendor relations.

• Supported implementation and integration of GRC tools (RSam and ServiceNow) within Information Security environment, streamlining workflows and enhancing overall efficiency.• Defined GRC services catalogue for ServiceNow and RSam integration.• Enhanced project efficiency through streamlining of processes and adoption of agile methodologies. Optimized development workflows by integrating agile practices and principles of continuous integration.• Collaborated with cross-functional teams to drive process improvements resulting in optimized utilization of risk management platforms.• Established strong relationships with stakeholders to support successful execution of GRC initiatives.• Developed tailored GRC solutions for Third Party Risk and Vulnerability Management teams resulting in increased security and reduced exposure to risks.• Increased stakeholder and end user satisfaction by implementing efficient business processes and providing exceptional service.• Established, optimized and enforced business policies to maintain consistency across enterprise risk operations.• Championed culture of continuous learning through regular training sessions, workshops, and knowledge-sharing initiatives aimed at enhancing end user and stakeholder use of risk management platforms.

As a consultant my responsibilities included Implementing projects related to, IAM, IT security and information systems.• Collaborated closely with senior management to align project objectives with strategic company initiatives, ensuring that efforts contributed to overall business growth.• Led enterprise implementation of Qualys and RSam platforms.• Led change management & training roll out for implementation of Optiv platform.• Analyzed problems and prepared remediation plans related to vulnerabilities.• Oversaw all stages of IT projects from inception to completion and managed communications with both internal and external stakeholders.• Developed and implemented strategic project plans to meet business objectives.• Developed executive presentations and reports to facilitate project evaluation and process improvement.• Implemented a set of comprehensive tracking processes to monitor IT project performance.• Fostered a culture of innovation and creativity within the project team, leading to improved problem-solving capabilities and enhanced outcomes.• Mentored junior team members in project management best practices to enhance their skills and contribute to better overall performance.

• Managed multiple concurrent IT projects effectively by prioritizing tasks based on urgency, impact, and available resources.• Cultivated strong relationships with clients through attentive service, anticipating needs in advance while addressing any concerns proactively.• Facilitated cross-functional cooperation by establishing clear roles, responsibilities, and expectations for all team members across departments.• Championed process improvements by continually reviewing existing procedures to identify areas of inefficiency or redundancy, proposing actionable solutions accordingly.• Promoted knowledge sharing among team members through regular training sessions and workshops focused on best practices in project management.• Developed executive presentations and reports to facilitate project evaluation and process improvement.

• Facilitated compliance with healthcare regulations such as HIPAA by conducting periodic audits of record-keeping practices, privacy policies, and staff training programs.• Oversaw successful implementation of EHR system, leading staff training sessions and addressing technical issues as they arose during transition period.• Developed comprehensive policies and procedures for various aspects of medical office management, ensuring consistency across departments and teams.• Streamlined office operations by implementing efficient administrative systems and procedures.• Provided reporting for forecast analysis and ad-hoc reporting in support of decision-making.• Studied processes, implemented cost reductions and developed reporting procedures to maintain administrative workflow.• Managed office inventory levels, ensuring adequate supplies were available while minimizing waste and unnecessary spending• Strengthened relationships with vendors and suppliers, negotiating favorable contract terms for medical supplies and services.

• I alleviated process bottlenecks by instructing and mentoring employees in best practices, procedures, and performance strategies. Additionally, I coached team members to sustain high levels of productivity and meet performance metrics.• Set, enforced, and optimized internal policies to maintain responsiveness to demands.• Implemented business strategies, increasing revenue, and effectively targeting new markets.• Negotiated price and service with customers and vendors to decrease expenses and increase profit.• Conducted regular performance reviews, identifying areas for improvement and developing action plans to address them.• Interacted well with customers to build connections and nurture relationships.