Select projects:GRC Implementation, Cybersecurity and IT Risk Management:- Planning, Regulatory Remediation & Framework Adoption – Co-led the development of the Bank’s long-term IT strategy for remediation of regulatory findings and implementation of oversight functions to ensure sustainability of implemented cybersecurity solutions based on the NIST cybersecurity framework.- Policy Framework Development – Developed the Bank’s IT policy framework and created policies, standards and procedures for Cybersecurity and IT Operations.- Process Augmentation & Use of Best Practices – Led discussions with IT management related to the Bank’s core technologies configuration baselines and developed and implemented technical standards based on applicable Center for Internet Security benchmarking standards and best configuration practices.Risk Management, Regulatory Remediation and Data Governance:- Regulatory Compliance - Led a multi-disciplinary team of subject matter experts to validate the successful remediation of a global bank’s IT and business activities related to CCAR & DFAST, including internal audit projects focusing on data governance, data quality, data tracing, and Recovery and Resolution planning efforts.

Director, Risk Assurance, Financial Services Practice Director, Advisory Services, Banking and Capital Markets Experienced Manager, Risk Assurance, Financial Services Practice Consulting for major banks and financial services companies:Led pre- and post-system implementation reviews; data governance, mining and analytics; journal testing, automated controls, due diligence reviews; capital planning and analysis; policy and procedure development; penetration testing; business process assessments/reviews; system optimization; best industry practice and risk assessments; business continuity and disaster recovery reviews; and compliance, vendors and data privacy reviews.

Sr. Technology Manager, Regional Information Security Lead (New York and New Jersey locations), Corporate Information Technology (CIT) Manager, Information Security, Pfizer Consumer Healthcare (PCH), IS Finance and Support Services Supervisory Senior Auditor, Corporate Finance Division Established the information security organization and led the daily operations of information security staff and consultants. Responsible for monitoring internal network activities, privileged admin and service accounts, vendor network access, new account creation/removal, wireless connections/access points, network/application access for divestitures, incident handling, user security awareness training, patching and scanning of new and existing servers for compliance with the firm’s standardsSpecific assignments included:- Established PCH's information security organization and created and led the execution of its information security strategy and information protection program.- Led development and implementation of an information protection program to ensure protection of PCH’s information assets, as well as information security policies and procedures - Implemented business continuity planning program, formalizing the business units’ BCPs. Oversaw development of disaster recovery plans and related plan testing.- Represented PCH on Pfizer's Global Information Security Council tasked with developing and governing the roll-out and of information security standards and best practices/key controls across Pfizer’s business units and information technology departments.

Senior Consultant performing IT projects/audits for major banking and financial services clients. Responsible for leading a team of IT auditors/SME’s executing work related to financial audit engagements or client specific consulting projects. Supported and ensured that staff were trained in the firm’s audit methodology and practices. Performed on-the-job training of staff members to ensure deliverables met the firm’s standard, and supported staff in meeting their yearly development goals.