Drive the development and execution of IT audit and compliance assessments, upholding compliance with ISO 27001 standards and enhancing overall security posture. Delivered high-impact IT audit engagements, reducing audit findings through targeted risk identification and resolution. Directed risk mitigation projects using SAFe methodology, accelerating project timelines and advancing risk management. Optimized IT vulnerability management processes, minimizing security incidents by remediating system weaknesses. Steered disaster recovery and business continuity planning initiatives, assuring operational recovery during testing. Partnered with leadership to streamline enterprise-wide Governance, Risk, and Compliance (GRC) initiatives.

Mitigated cybersecurity risks by identifying and resolving vulnerabilities during regular audits and threat modeling, significantly reducing third-party risk incidents. Partnered with legal counsel to integrate robust Technical and Operational Measures (TOMS) into contracts, elevating risk management controls and protecting enterprise assets. Championed the evaluation of new and existing technology platforms, ensuring cybersecurity controls were fully employed, enhancing overall compliance across enterprise systems. Provided expert advisory on security control implementation throughout project lifecycles, strengthening project security posture and reducing project-related risks. Drove compliance with HIPAA/GDPR and PCI DSS standards through meticulous third-party risk assessments, safeguarding critical patient and payment data.

Led business reviews and crafted tailored customer strategies, strengthening client relationships and driving measurable improvements in service delivery. Identified and addressed critical gaps in DLP solutions, formulating actionable recommendations that enhanced overall data security posture. Created and delivered user training through documentation and presentations, facilitating seamless system adoption.

Conducted thorough assessments through home visits, drug testing, and monitoring of participation in required programs. Maintained adherence to state and federal security protocols, contributing to public safety while managing high-risk parolees. Contributed to reducing recidivism rates by addressing parolee needs and promoting successful reintegration strategies. Collaborated with law enforcement, community organizations, and social service providers to ensure parolees had access to critical support services.Colorado Peace Officer Standards and Training (POST) certified.