Providing companies with expertise in the following areas: AI and Privacy control frameworks, Privacy and Compliance by Design, CMMC Pre-Assessments, ITGC & SOX Testing, Privacy, Risk Assessment & Risk Management, Compliance Gap reviews, GRC Program development, and remediating Consent Agreement findings. Build out best-in-practice GRC and Internal Audit Organizations. Including, but not limited to; coordinating ISO Certifications, SOC’s, Penetration Testing, PCI, HIPPA external audits, Privacy, SaaS FedRAMP Moderate/High environments, continuous monitoring programs (Internal Audit), implementing FAIR based risk programs and governance adherence.Skilled at presenting to Sr Government Officials, C-Suite and Board of Directors. Focus on presenting objective information that enables leadership to make informed decisions with context of risk and costs. Specializations include: Internal Audit, Building Second Line of Defense Programs, FedRamp, NIST 800-171 (DFARS), NIST 800-82, GDPR, SOX, ITGCs, FAIR Risk Methodology, AML, Mortgage, RSA Archer, Project Management and Compliance Program development. Clients include, but are not limited to: Citibank, USAA, Corning, Cummins, Defense Companies, HR Consulting Firm, T-Mobile, MUFG, CNB, Workday, to name a few. As Part of GSC: Sr. Director, Digital Compliance and Privacy (06/2022 to Present for Korn Ferry) Hired to design, staff and implement the Digital Compliance and Privacy team. Implemented compliance framework's: Various ISOs, SOC2, NIST 800-171, NIST Privacy, FedRamp, and MLPS. In two years, I have successfully built the team, implemented a control framework that utilizes the concept of "test once use many" across the frameworks mentioned previously and implemented a GRC software solution for the aggregation of our work products and reporting. In addition, Using my experience, I implement a gating process in the System Development Life Cycle (SDLC process), program management and KPI reporting for my organization.

Designed and executed inaugural business unit focused risk assessment and audit approach while enhancing overall program. Developed and Employed Agile audit approach to build and grow team to address issues efficiently and quickly. Guide collaboration of five business units providing single approach to address growing cyber security issues. Hire 7-10 new GRC and SCA staff depending on hiring cycle.• Secured approval for single largest headcount increase for RMS IT since 2010 by proving mathematical model justified increase in headcount to match new DoD regulations and memos for defense contractors.• Led team at RMS that identified PI data for GDPR and CCPA. Developed policies and testing protocols to ensure future compliance. Successfully passed external audit of the program in year one.• Received 7 different CIO awards during tenure for; collaboration, issue identification, development of new programs, etc. • Developed Enterprise wide IT Audit program (including cyber) for server, database and application layers. Program also included DLP, Insider Threat and data classification reviews. • Regularly presented to DoD and Armed Forces Commanders and Generals as well as C-Suite of Raytheon.

Created export/import (EXIM) compliance and automated audit program. Led Six Sigma project to improve enterprise-wide compliance within three months. Directed collaboration to design, deploy, and manage global risk assessment for export/import systems. • Devised and Implemented strategy for all IT regulatory requirements testing; including NIST 800-53r4, NIST 800-171, SOX, GCCs, ISO, Cloud, and internal policies.• Developed mitigating controls and remediations that enabled critical section of consent agreement to pass.• Found critical opportunities for 10 EX/IM Systems in change management, disaster recovery, and security.• Received two Global Excellence Awards for developing the Enterprise-wide monitoring of foreign persons.

Supervised teams of 20-30 people per project (IT Solutions required to exit the consent agreement). Proposed and Implemented process controls, policy updates, and automation to report and import/export of ITAR/EAR information and track foreign employees. Led collaboration between human resources, supply chain, global trade, and legal teams to guarantee comprehensive solution delivery.• Designed and guided foreign employee orientation, IT access monitoring, and off boarding programs allowed company to exit consent agreement one year ahead of projections.

Formed and led eight-person sales audit and compliance team handling home loans. Created team finding multiple control weaknesses, process gaps, and training opportunities in six months allowing company to engage processes and procedures before continuing further testing. Wrote and introduced team policy and procedures.• Designed database to include all compliance testing results and monitor weekly and monthly metrics.• Oversaw all aspects of project including contingency and capacity plan and milestone meetings.• Created programs including mystery shop testing of loan officers and testing for multiple regulatory violations (social media, RESPA 8, Reg B, Fair Lending, etc.)• Delivered monthly metrics on defects and errors, policy deficiencies, and process gaps.

Built and managed team answering state and federal exams for company and subsidiaries. Supervised team of 70 people 60% on-shore and 40% offshore. Prepared team policies and procedures.• Revamped organization to provide process efficiencies, and streamlined consistency within four months.• Prepared and submitted all Exams timely and aided in a burn-down strategy of California consent decree applied by Ocwen in order to continue to do business in the state.• Recommended and Implemented Exam Prep testing strategy in order to ensure successful completion of Exams. Reported compliance gaps and remediation activities to Senior Leadership on a weekly basis.

Spearheaded five remediation projects under consent order addressing system functionality errors resulting in borrower harm. Provided accurate mortgage data to borrowers and refunds for multiple over charge types. Remediated business practices leading to errors in mortgage loan balances (customer atonement) with largest project over capitalization of fees resulting in $55M refunded back to customers. Produced project artifacts including business requirements permanently addressing compliance issues. Learned initial business requirements were not understood by IT team and put project in “red” and led two all day meetings with IT, business units, compliance and legal to redefine requirements put project back on track.  Authored project artifacts including charter, tollgate documents, UAT, project plan, etc. Led project to mitigate PCI deficiencies for the credit card business. The focus was on data identification, segregation and encryption.

Provide consulting and project management in the areas of Global Due Diligence, AML, BSA, PATRIOT Act, Fraud, Governmental Compliance Reporting and Organizational Transformation issues. Completed projects: Led multiple projects related to global due diligence, AML, BSA, Patriot Act, fraud, governmental compliance reporting, and organizational transformation issues. Supervised up to 30 personnel in multiple locations in U.S. and India. Prepared project charters, documented business needs, facilitated regular update meetings, and conducted user acceptance testing, tollgates, and other project artifacts. Served as primary expert in potential suspicious activity to compliance organization. • Guided five of 18 projects addressing deferred prosecution agreement between Department of Justice and MoneyGram International.• Spearheaded project to improve global due diligence team’s process efficiency, compliance, and metrics. • Directed team analyzing prior due diligence of global agents and re-performed due diligence. • Produced review/audit of prior due diligence efforts performed by MSB over four years (400,000 agents globally) Control gap identification and implementation, process enhancements, and IT solutions to ensure compliance on a go forward basis.• Negotiated multiple business unit requirements into final project deliverables decreasing internal conflict.

Managed daily operations of financial services consulting agency providing interim CFO services aided by four employees. Advised clients with on key financial issues including job profitability, overhead expenses, and cash flow. Processed weekly payrolls and bookkeeping tasks.• Grew portfolio to nearly 40 clients in four years. • Provided Accounting/Finance and IT leadership for companies in retail, restaurant, services, auto, legal, medical, construction, and franchises with revenues between $1M-$10M.

Project Based: Director of Risk Management Services (contractor), providing Management and Delivery of Post-Merger Integration Services, Restatement, and other Financial Services for Clients. Responsible for identifying project opportunities, creating proposals, and defining scope of work for multiple clients. Ensure deadlines are met while facilitating communications between process owners. Managed post merger integration project. Tatum was selected to perform post merger integration services for a leading benefits and payroll company. Led team in developing / executing plan for integrating processes, controls, staff and financial reporting. Completed project ahead of schedule, saving client $300K of projected spend. Identified errors in accounting processes. Client needed stand alone auditable financial statements for one of its business units. During assessment and planning phase of statement carve out, identified $10M in errors in financial statements for 2012. Restructured entire accounting process for business unit.FINANCIAL SYSTEMS IMPLEMENTATIONSPOLICIES & PROCEDURES INTERNAL CONTROLS DUE DILIGENCESPECIAL PROJECTSBUSINESS PROCESS IMPROVEMENTINTERNAL AUDIT (IT, Financial & Operational)SOX AUDITIT GOVERNANCEPMOGOVERNANCE, RISK AND COMPLIANCEFINANCIAL/ACCOUNTING MANAGEMENTFRAUD INVESTIGATIONS PROJECT MANAGEMENT PROCESS IMPROVEMENTCASH FLOW ANALYSIS MERGERS & ACQUISITIONSRISK/FRAUD MANAGEMENTREVENUE ASSURANCECHANGE MANAGEMENTSIX SIGMA GREEN BELT

Developed global risk assessment. Recruited to Dresser to hire, train and manage SOX team for the company’s initiative to go public. Developed Dresser’s first global risk assessment, including creation of two year audit plan. Implemented SOX controls across 6 business units in 23 locations worldwide. Identified 10 significant deficienciesSaved Dresser over $7.5M in audit fees. Developed a plan for remediation of 10 significant financial and IT deficiencies. Partnered with business units and corporate leadership, resolved six of ten deficiencies far ahead of schedule. Saved Dresser significant amounts in audit fees and offset possible need for restatement of financials.• Managed department for global operations, supervising 30 staff for 23 sites.• Revamped key controls identified to streamline operations and testing initiatives.• Orchestrated first global based risk based audit program. • Resolved several significant deficiencies by collaborating with CAO, CFO and Business Unit leaders.• Leveraged process efficiencies across multiple divisions and business segments.

• Directed multi-state staff in charge of GE/ Xerox Inc. joint venture audits.• Developed A/R process that maximized controls and minimized duplicative processing.• Identified significant embezzlement and collusion group in A/R department. • Achieved Green Belt Certification. • Enhanced Audit department by instituting risk-based key controls and audit plan.

Consultant, Internal Audit• Oversaw SOX compliance efforts for clients such as; Sabre, American Airlines, TXU Energy.• Provided US wide training on “key control” identification to auditors within the firm.• Revitalized office wide training initiatives.• Identified, tested and managed releases and application of key SOX tracking software.

Project Manager for Code Releases to the Long Distance Billing Platform (system). Managed development, testing and release along with a third party vendor.

Performed Internal Audits for all business units. Managed both IT Audits and Operational Audits, specializing in Revenue Assurance.