*. Lead the development and implementation of a robust GRC framework, ensuring alignment with industry standards and regulatory requirements.*. Established and led a dedicated Data Security team, driving cross-functional efforts to assess and mitigate data-related risks, while developing and maintaining an ongoing data protection program.*. Designed, built, and implemented a comprehensive risk management and third-party risk management (TPRM) program, establishing regular risk assessments, vulnerability assessments, and gap analyses to proactively identify and mitigate security vulnerabilities.*. Lead the InfoSec team responsible for addressing customer inquiries regarding security concerns and effectively communicate and translate customer requirements to ensure the secure development of products with the product/DevOps team. *. Developed holistic work plan to establish and modify processes in alignment with IPO requirements, ensuring regulatory and operational readiness.*. Collaborate with stakeholders to establish and maintain policies, procedures, and controls in accordance with NIST, ISO, and SOC standards and work with external auditors to facilitate successful completion of audits and certifications.

*. Led and Managed Teams: managed two teams responsible for internal auditing and risk assessment, ensuring cohesive execution of audit processes and high standards across all deliverables.*. Enhanced Risk Controls: Implemented risk assessment frameworks and control measures to address financial, operational.*. Directed In-Depth Audits: Assess organizational compliance, operational efficiency, and financial integrity, delivering actionable insights that drive improvements across departments.*. Collaborated with Senior Leadership: Worked closely with the Board of Directors, senior leadership and external auditors to ensure alignment on audit findings, facilitate transparent reporting, and support informed decision-making for better governance.

*. Established New SOX Department & Enhanced Compliance: Founded and structured a dedicated SOX department, including mapping key risks across finance, IT systems and general insurance, ensuring compliance with SOX standard organization-wide.*. Implemented and Managed In-depth Control Programs: Directed IT General Controls (ITGC) auditing, conducted detailed control programs, and managed consultants' audit activities to maintain compliance, and successfully integrated the SOX management system across all departments.*. Collaborated with Leadership for Governance & Process Optimization: Collaborated with leadership to enhance governance and optimize processes, presenting findings to the Disclosure Committee, refining financial reporting practices across business units and subsidiaries, and ensuring SOX and regulatory compliance through close coordination with finance, operations, technology, and external audit teams.