Security-focused professional, specializing in information security with a focus on risk management, vulnerability assessment, and incident response. Proven capability in developing, implementing, and monitoring security measures that effectively safeguard sensitive data in cyberspace. Experienced in reviewing, maintaining, and enforcing information security policies and procedures to protect organizational systems. Skilled in conducting thorough risk assessments and business impact analyses, identifying security vulnerabilities, and recommending strategic solutions. Demonstrated comprehensive understanding of ISO 27001/27002 standards. Proficient in managing documentation for audit purposes and remediating identified security gaps. Accomplished in supporting vulnerability management programs and managing information security risk exceptions and incidents. Remarkable ability to collaborate with cross-functional teams, ensuring stability and integrity of organization's information systems. Technical Proficiencies Frameworks & Standards: CIS | COBIT |COSO ISO 27001 & 27002 | NIST 800 -53 | FedRAMP | HITRUST| HIPPA Methodologies: Agile | Scrum | Waterfall
