P S. Email & Phone Number

California, United States

Foster City, California, United States

• PCI DSS Compliance Management: Oversee and manage the compliance program for PCI DSS (Payment Card Industry Data Security Standard) across the Visa network
• Third-Party Risk Management: Assess and mitigate risks associated with third-party agents, acquirers, and service providers within the Visa ecosystem. This includes managing relationships with third-party sponsors.
• Security Policy and Procedures: Develop, implement and monitor global data security guidelines, policies, and procedures to protect Visa’s payment ecosystem from cyber threats and fraudulent activities
• Threat Monitoring and Incident Response: Work with acquirers, issuers, and forensic investigators (PFIs) to monitor the security environment for any potential breaches or risks
• Team Leadership and Project Management: Lead a team and drive strategic projects focused on enhancing security and increasing the visibility of service providers within the payment ecosystem
• Client Consultation and Expertise: Provide subject matter expertise in data security and risk management to Visa clients, helping them understand and navigate potential risks

Palo Alto, California, United States

• Monitored the security landscape to ensure proactive management of known and emerging threats, aligning risk management processes accordingly.
• Conducted regular security risk assessments, collaborating with internal teams to implement risk mitigation strategies for various initiatives and projects.
• Coordinated with internal and external business partners to identify, evaluate, and manage security risks.
• Supported incident response plans for major security incidents, ensuring timely and effective resolution.
• Ensured compliance with statutory requirements (SOX, PCI, Privacy) by monitoring and documenting system controls.
• Developed processes, standards, and cross-functional workflows, continuously reviewing and updating documents as part of process improvement efforts.

San Jose, California, United States

• Collaborated with Internal Audit to ensure business-level control compliance as part of SOX, PCI, and compliance audit teams.
• Assessed and monitored data governance policies for internal operations and third-party compliance using established assessment methodologies.
• Communicated security risks and solutions to technical audiences and management, educating stakeholders on emerging risks.
• Reviewed and managed privileged access approval processes to mitigate risks while supporting business objectives.
• Worked with project teams to ensure accurate control mapping and documentation for new implementations and changes, ensuring proper change management approval.

Los Altos, California

• Identified SOX and privacy controls as part of project teams, documenting controls for new implementations and reviews.
• Conducted privileged and general user access reviews, as well as data conversion audits, to ensure compliance and security.
• Regularly presented audit results and remediation status to leadership and staff at all levels.
• Collaborated with legal and other stakeholders to ensure statutory compliance and provide business training.

Ontario, Canada

• Designed, implemented, and maintained comprehensive compliance programs and policies that align with industry best practices and regulatory requirements
• Conducted business process and compliance gap analyses, identifying areas for improvement
• Collaborated with teams to address findings and enhance operational efficiency while ensuring regulatory compliance
• Worked closely with business stakeholders to implement and enhance the Compliance Program, ensuring ongoing alignment with regulatory requirements
• Developed and delivered training programs for employees on compliance-related topics, fostering a culture of compliance throughout the organization

Master'S Degree, International Business

Stanford Innovation And Entrepreneurship Certificate