Lead project management efforts for the twice-annual audit cycles for SOC 1-2-3, HIPAA, and PCI pertaining to the Core Salesforce product offerings across a team of 15 peopleOrchestrated and implemented Agile for Audits across the internal audit teams at Salesforce, representing more than 50 people across 8 teams

I work in Salesforce’s Security GRC function on the Issues and Exceptions Management team. Our team triages cases relating to any security compliance failure, non conformance to a security standard/control, and bugs over SLA. As an outcome of these cases, we gather insight from the relevant workgroups, and provide information to Security Leadership to make risk-based determinations on an individual case basis.I also serve as the Scrum Master for my team, and am Salesforce Scrum certified.

While at Grant Thornton in the Cyber Risk practice, I have been involved in a number of different engagements focusing on privacy regulatory compliance, and privacy program implementation under laws such as the GDPR, and CCPA. My work has consisted of things such as developing records of processing, assessing compliance readiness and creation of implementation roadmaps. Additionally, I have assisted in developing policies, training, governance structures, and guidance documents around Privacy by design, and Data Security concepts. In doing so, we inform client programs that align with compliance and security requirements, to solidify governance programs that will promote long-term sustainability.

I served as an Undergraduate Instructor for the Introduction to Informatics (INFO-I 101) where I taught lab material to a class of 30 students on a twice weekly basis. In my last semester alone I taught three lab sections of Intro to Informatics. My responsibilities also included grading, taking attendance, and hosting study sessions. Topics within this class included, but were not limited to: HTML, CSS, Programming, Python, Javascript, Access, HCI, Security, and other relevant topics in today's technical world.

• Worked with industry experts to craft innovative responses to lead compliance with the new Federal Financial Examinations Council's (FFIEC) 'Appendix J'; including writing new language for the Master Service Agreement for Technology Service Providers (TSPs) to include Business Continuity Plans and Disaster Recovery Testing; and similar additions to the Visa Global Endpoints Guide• Utilized tools like Sharepoint and Sunguard Assurance for numerous data-driven projects

- Performed a CignaIT wide data cleanup for our HPSM manager to ensure the correct listings were in order. Found 102 errors, prompting changes to be made to the frequency of the cleanup being run.- Assisted with a new metric proposal to begin September 2015. I checked the reports being made and leveraged by the group against reports made by a Cigna data source Clarity, to see if any reports were being remade in error. Found 4 questionable reports being made, that saved effort because they could be replace by automated reporting.- Worked closely with Cigna's The Way We Get Work Done team to assist with their new inwardly facing website to be rolled out in the upcoming year. I designed web pages for them using specific system and brand guidelines to best convey their information and improve retention.- Instituted a new metric in the estimation space that will save baseline dollars by simply keeping track of how much an estimation costs to produce from beginning to end. I then wrote an inwardly facing white paper on my methods to be distributed. - Worked with CignaIT's Clinical team to reorganize their space to best reduce error and fall out when intaking error tickets.