• Formulate and deploy practical cybersecurity policies based on the NIST CSF framework to ensure confidentiality, integrity, and accessibility of sensitive information.• Evolve cyber security posture by spearheading security awareness initiatives that deliver clear, actionable, and up-to-date cybersecurity training, including the development of phishing campaigns that led to a reduction in the organization's phish-prone percentage.• Devise, create, and execute the cyber security compliance initiative, guaranteeing alignment of IT operations, processes, and procedures with NIST standards, internal policies, and regulations.• Develop, implement, and improve cyber risk management strategies to identify, monitor, and mitigate cyber security risks, resulting in more informed risk-driven decision making.• Addressing cybersecurity incidents through the preparation and execution of tabletop exercises.• Collaborate closely with internal teams and external auditors throughout compliance assessments by cultivating relationships while maintaining focus on audit scope, timelines, results, and the execution of corrective actions to rectify identified gaps.• Partner with the Business Continuity team to develop and maintain comprehensive IT disaster recovery plans that are aligned with the organization's business needs and risk appetite.• Act as a point of contact for Cyber security risk assessments, customer due diligence questionnaires, audits, and regulatory responses.• Assess the operating effectiveness of internal controls to ensure compliance with the requirements in PCI DSS. • Oversaw and drove the enhancement of change management processes and procedures, ensuring seamless alignment with the COBIT-based internal control framework.• Demonstrated proficiency in people leadership by overseeing all aspects of the IT GRC team, including people-related tasks involving new talent, employee engagement, and career development.

• Oversee and propel the advancement of change management processes, procedures, and communication strategies, ensuring they seamlessly align with the internal control framework established based on COBIT principles.• Develop and build out the framework for IT governance and technology changes to render high quality assurance and risk mitigation.• Partner with internal and external stakeholders to develop and implement an automated testing strategy that meets the organization's quality standards.• Craft and deliver clearly defined organization wide communications to ensure effective collaboration and uniformity throughout the organization.• Work closely with internal teams and external auditors during compliance assessments.• Collaborate with key groups to ensure projects comply with established QA and Testing processes, including project management processes, and ensuring and/or assisting with process maps.

• Managed all aspects of IT change management, including personnel actions, budgeting, stakeholder management, policy adherence, and vendor management.• Developed and implemented policies, procedures, and standards to effectively manage IT changes, while meeting regulatory requirements.• Provided expert advice and counsel on policies and procedures to end users and change management analysts.• Participated in internal and external audits, performed root cause analysis, and developed corrective action plans.• Reviewed and assessed disaster recovery plans to ensure they were comprehensive, effective, and up to date.• Contributed to the development and implementation of Executive Standards Committee (GRC) policies and procedures.

• Ensure the integration and flow of development, testing, and implementation of applications follows the guidelines set forth by the IS Executive Standards Committee, Sarbanes-Oxley and Audit guidelines. • Help identify, create and/or implement processes or products to efficiently manage the release of code. • Assist troubleshooting problems with applications. • Serve as liason between development group and other IT departments to guarantee smooth and timely delivery of software products or updates. • Participate in internal audit process by researching requests in HP Project and Portfolio Management and then verifying the code in the production environment matches the code in the request. • Advise end user community as well as team members on Change Management policies and procedures.