Associate Director
CurrentLeading information security, privacy compliance to ensure a secure and compliant environment over cloud based platform (AWS).Holding HITRUST CSF V 9.4, ISO 27001: 2022, GDPR, SCHREMS 2, WCAG, HIPAA, FedRAMP Moderate SSP, and SOC2 Type2 certifications and compliances.Implementing robust security measures and controls to protect sensitive data and systems, aligning with regulatory requirements and industry standards.Developing and enforcing privacy policies and procedures to safeguard confidential information and ensure compliance with privacy regulations.Designing and implementing comprehensive BCP strategies to mitigate risks and maintain business operations during disruptions.Responding to RFIs / Client Security Questionnaires: Provide in-depth responses to a variety of information security questions/clarifications per the implemented best practices and technologies. Review prospective clients' Data Processing Agreements (DPAs) and Business Associate Agreements (BAAs).Assuring AWS security best practices and configurations to ensure the integrity and confidentiality of cloud-based infrastructure and services.Conducting risk assessments and proactively identifying and addressing security gaps.Collaborating with stakeholders to promote a culture of security awareness and training across the organization.Keeping up-to-date with emerging trends, technologies, and regulations in information security, privacy, BCP, and AWS to drive continuous improvement.