Governance, Risk and Compliance (GRC) Director managing an international team, responsible for providing comprehensive oversight and Risk Management, while ensuring tolerances are within company's risk appetite. Provides oversight and governance to internal and external parties, ensuring legal, regulatory, policy, standards, and security compliance.• Directs Information Security corporate-wide process for Policies, Standards, Procedures, and other Security governance to be developed, updates, reviewed, approved and communicated to all applicable stakeholders.• Reviews legal customer and corporate contracts for compliance and security, while providing consulting around HIPAA, GPDR and other regulatory requirements, with the understanding of customer requirements/needs as well as industry standards and organization risk requirements.• Manages and facilitates company-wide audits such as SOC2, ISO and penetration testing. Works with departments in creating procedures and processes to align with organization wide GRC framework, facilitating successful audits of SOC2 and ISO audits.• Provides key insights and quantified risk analysis to C-suite executives, facilitating security-related discussion and decision making.• Lowered annual audit costs by $500,000 while maintaining industry standard certifications without compromising security or risk resilience.

Governance, Risk and Compliance Officer managing a global group of IT security professionals, for an industry leading telematics transportation sector company, for products innovating routing, fleet safety and other business solutions.• Reported to CISO, while also directly engaged with C-Suite executives focusing on all aspects for risk to the company. • Worked with executive leadership to lower risks and company appetite, project risk acceptance and collaborate with departments to engage in projects to lower known company risks. • Managed team to facilitate and successfully complete both internal and external annual audits including HIPAA, SOC, and other compliance audits.• Created new global policies and procedure while working with heads of departments. Established an annual cadence for review of all policies, as well as key stake holder approval.

Role Context: Sr. Security professional commissioned to build and manage the Governance, Risk, Compliance and Vulnerability Programs incorporating analysis and development, while leading and implementing systems of protection for Fortune 1000 company.Team Size: 7 IT Security personnelKey Achievements:- Oversee and mature the IT Security Governance, Risk and Compliance and Vulnerability Assessment Programs. (SOX, SEC, ITAR, EAR, CIP, NIST, ISO)- Represents Corporate I/S security interests on I/S infrastructure and architecture task groups implementing new technologies and business functionality.- Develops and recommends security policies, procedures, standards and operating instructions

Contracted resource for business’s Strategic Information Technology and Security solutions, focused on medium sized Fortune 1000 companies.• Architected and led implementations/initiatives in: network infrastructure and security, Identity Access management, Information Security strategies, IT audits, security encryption, and data loss prevention.• Business Continuity and Disaster Recovery creation and implementation• Internal/External Security Risk and Threat Assessment.

Role Context: IT Web Hosting and SQL Database Senior Manager for Fortune 100 multinational conglomerate within the aerospace and manufacturing industries.Team Size: Managed 25 global and off-shore web hosting & database developers and engineersKey Achievements:- Recruited to build and guide transition teams for new contracts as Managed Services IT leader for global and off-shore technical team members for the organizational structure and operational readiness of the global Web Hosting and SQL departments. - Managed the implementation, strategy, security, operation and development of the 1000+ websites and 6500+ databases, creating a $3.5M yearly revenue stream, while maintaining a 99.99% customer up-time for 7x24x365 environment.- Global Web hosting and SQL Database change management, SharePoint management, policy creation and implementation for vendor transition and internal teams.

Role Context: Head of Web Hosting Services Program for Global Service Delivery & Global Technology organization across Americas (North & South), Asia, Europe & Middle East for Fortune 100 Company. Managed security, encryption and Identity Access Management for companies 15,000+ user base for Fortune 100 Company.Team Size: Managed 15 matrixed Developers, Engineers, Project Managers and Security professionalsKey Achievements:- Service delivery global web hosting leader managing UTC’s 3-Tier web hosting Infrastructure.- Managed day-to-day operational security and readiness with matrixed team supporting 600+ servers and 2400+ websites, while maintaining a 99.99% up-time for 7x24x365 environment.- Maintained DLP and WebSense security, Infrastructure, design, Web development, documentation and management for the corporate Web Hosting environment.