• Dedicated to delivering comprehensive cybersecurity services, encompassing Governance, Risk, and Compliance (GRC), penetration testing, secure code reviews, virtual CISO (vCISO), and cloud security architecture evaluations.• Engage with clients across diverse industries and sectors, focusing on GRC alignment with NIST 800-53, CMMC, DFARS 171, CSA, ISO 27001, HIPAA, GDPR, and SOC 1/2 requirements.• Consult on technical and security engineering aspects, specializing in the application of FIPS 140-2 cryptographic requirements in relation to NIST 800-53/FedRAMP, CMMC, and DoD standards, facilitating deployment within secure cloud and computing environments.• Leverage expertise in Zero Trust Architecture strategies, designing and implementing cutting-edge cybersecurity solutions that prioritize a "never trust, always verify" approach.• Conduct an array of penetration testing engagements for clients, inclusive of Web, Mobile, Internal/External Network, AWS/Azure, and API testing, adhering to OWASP and PTES frameworks.• Perform cloud security architecture reviews for clients, verifying adherence to optimal cloud security practices, guidelines, and recommendations for AWS and Azure environments, from both technical, compliance (GRC), and security perspectives.• Provide vCISO services to clients, offering comprehensive cybersecurity program development and support, adaptable to a range of organizational sizes and budgets.• Conduct secure code reviews across various code bases, assisting organizations in building, testing, and deploying secure code in alignment with NIST's Secure Software Development Framework (SSDF) and OWASP Secure Coding Guidelines.• Provided AI Security Consulting on new and emerging technologies such as LLAMA versions, OpenAI GPT versions, and other LLMs. Familiar with emerging trends in AI security including NIST RMF AI framework and OWASP Top 10 LLM security.