Polycarp F. Email & Phone Number

Texas, United States

Cambridge, MA, US

• Developed and implemented comprehensive governance, risk, and compliance (GRC) frameworks, reducing compliance violations by 25% within the first year.
• Led a team of 8 analysts in conducting regular risk assessments and audits, ensuring adherence to industry standards (e.g., ISO 27001, SOC 2) and regulatory requirements.
• Implemented automated risk management tools, increasing efficiency by 30% and enabling real-time monitoring of risk indicators.
• Spearheaded the development of 10+ policies and procedures to address emerging threats and regulatory changes, enhancing overall risk posture and compliance readiness.
• Collaborated with cross-functional teams to streamline compliance processes, resulting in a 20% reduction in audit cycle time.
• Provided expert guidance on risk mitigation strategies and controls, reducing cybersecurity incidents by 15%.

San Francisco, California, US

• Initiate asset risk assessments, including discovery, analysis, and remediation planning processes, to quantify organizational risk and implement controls effectively, collaborating with primary tech/SME teams and.
• Conduct risk assessments on new and existing applications and infrastructures to identify security threats and vulnerabilities, determining risk severity for the organization.
• Align information security processes with cybersecurity frameworks (GLBA, PCI, SOX, NIST 800-30-39, FFIEC) to drive risk assessment and remediation methodologies.
• Continuously monitor, track, and report aggregate and granular risk thresholds established through the risk assessment process.
• Provide guidance on security controls including password and access management, segregation of duties, logging and monitoring, data encryption, backup and recovery, disaster recovery, and business continuity management.
• Deliver periodic reports on information security issues and compliance gaps with enterprise security policies, standards, and procedures to employees, contractors, alliances, and third parties.

Round Rock, Texas, US

• Conducted over 100 asset risk assessments annually, identifying vulnerabilities and quantifying organizational risk to implement effective controls.
• Aligned information security processes with industry-leading frameworks (e.g., ISO 27001, NIST) to ensure compliance and drive risk assessment methodologies.
• Led a team of 5 analysts in performing ongoing monitoring, tracking, and reporting of risk thresholds, resulting in a 30% reduction in critical vulnerabilities.
• Implemented security controls involving password and access management, segregation of duties, and data encryption, enhancing overall data security by 40%.
• Provided guidance and training to 50+ employees on security best practices and compliance requirements, improving organizational awareness and reducing security incidents by 25%.
• Delivered quarterly reports on information security issues and compliance gaps to senior management, facilitating strategic decision-making and risk mitigation efforts.

Dallas, Texas, US

• Conducted thorough vulnerability assessments across the company's information systems and assets to identify potential security weaknesses.
• Collaborated with stakeholders to devise and execute effective mitigation strategies, minimizing risks and fortifying the organization's security posture.
• Monitored and analyzed vulnerabilities detected through scanning and reporting tools, ensuring prompt action to address any identified issues.
• Delivered regular vulnerability reports and updates to senior management and stakeholders, fostering transparency and comprehension of the organization's security status.
• Liaised with internal teams to ensure timely and efficient resolution of identified vulnerabilities, prioritizing risk mitigation efforts.
• Developed and upheld comprehensive vulnerability management policies and procedures, ensuring alignment with industry regulations and company standards.

Master Of Science -Information Assurance & Cybersecurity, Cybersecurity-Governance, Risk & Compliance

Bachelor Of Science - Bs, Banking, Corporate, Finance, Life Insurance, And Intellectual Property Securities Law