As a Virtual CISO, I guide 25+ cloud-first companies in achieving and maintaining cybersecurity best practices and compliance (PCI, SOC 2, ISO 27001, GDPR, HIPAA). I lead a team of security professionals to manage security programs encompassing incident response, bug bounty programs, disaster recovery, malware detection, and security planning. I ensure that clients' technical controls and processes meet PCI and other compliance frameworks.

As a director of client service / Security and Compliance , I conduct thorough employee performance evaluations, collaborating with leadership to identify training needs and foster high-performing teams. Also, I direct and oversee a highly skilled security team, ensuring proactive incident response and comprehensive disaster recovery initiatives that swiftly mitigate risks and safeguard organizational assets. Additionally, I drive smooth integration and enhance business performance by facilitating cross-functional teams and implementing advanced systems and technologies. Through the development and execution of effective training programs, I improve employee competencies, enhance team efficiency, and foster a culture of continuous advancement. Below are some of my key accomplishments: ★ Executed comprehensive security-focused governance risk and compliance functions, actively mitigating risk and ensuring strict adherence to industry-recognized certifications such as ISO 27001, PCI-DSS, and SOC2. ★Implemented and enforced robust security protocols, ensuring client compliance with industry-specific standards, including CMMC, HIPAA, and NIST, resulting in the highest level of data protection and strict adherence to regulatory requirements. ★Implemented proactive support, coaching, mentoring, and motivation strategies to achieve a remarkable 30% reduction in turnover, fostering consistent, high-quality performance and cultivating a culture of continuous improvement among support technicians. ★ Performed quarterly internal IT testing to validate and enforce adherence to processes and controls, swiftly identifying and resolving deficiencies to ensure efficient remediation and strict compliance with standards. Implemented and maintained robust security protocols to ensure client compliance with industry-specific standards such as CMMC, HIPAA, and NIST, ensuring highest level of data protection and regulatory adherence.

During this position, I ensured the stability and functionality of computer hardware, software systems, and network infrastructures, proactively managing routers, switches, and servers to maintain uninterrupted operations and achieve optimal performance. I conducted proactive vulnerability scans, promptly implementing required patches to enhance system security and reduce potential risks, safeguarding critical infrastructure. Furthermore, I successfully ensured HIPAA compliance across multiple locations, including nursing and physical classes and clinics, by prioritizing the protection of confidential patient data and adhering to regulatory requirements. Below is my key accomplishment: ★Executed and conducted highly impactful security awareness training sessions for teachers and staff, effectively mitigating the risk of falling victim to phishing schemes and significantly fortifying the organization's overall security posture. ★ Conducted security audits on off-site campuses, assessing compliance with NIST 800-171 standards, and showcased college's unwavering commitment to robust cybersecurity measures and secure environment. ★ Efficiently coordinated and provided technical support and training to enhance operations and boost user satisfaction across five remote campuses, catering to a user base of over 400 individuals.

• Effectively managed operations including organization, accounting, and purchasing• Handled personnel management and created partnerships both in and outside of the community. • Lead all community outreach and brand marketing initiatives.• Applied performance data to evaluate and improve operations, target current business conditions and forecast needs.

• Functioned as primary support engineer for 300+ user accounts in a Citrix-based cloud environment• Provided advanced technical support to Xcentric's cloud servers, applications, and managed workstations• Assisted in developing documentation, knowledge base, and best practice guides to drive consistent results • Communicated highly technical information to both technical and non-technical users• Active directory Admin including user and file access control and GPO administration