Priya Tyagi
San Francisco Bay Area
Summary
Experienced Cyber Security Professional with 14+ years in IT Governance, Security, Risk, and Compliance at startups and Fortune 100 companies. Collaborative team player with a global perspective, skilled in establishing and maintaining GRC initiatives for SaaS companies. Expertise in achieving certifications and compliance with regulations like SOC2, NIST, GDPR, and PCI-DSS. Strong in risk analysis and mitigation, with technical proficiency in navigating technologies and risks. Adaptable and proactive contributor focused on team success, committed to continuous professional development and growth.
Overview
15
15
years of professional experience
1
1
Certification
Work History
Principal, Cyber Risk
Workday
03.2021 - Current
- Spearheaded comprehensive information security risk assessments across various organizational aspects (systems, processes, assets, third-party vendors), covering risk identification, evaluation, and measurement.
- Drove collaboration with diverse internal teams (Engineering, Product, IT, etc.) and business owners to establish security controls, define mitigation strategies, and ensure third-party solutions met security standards.
- Managed the lifecycle of risk mitigation by documenting, tracking, and evaluating its effectiveness, ensuring alignment with standards like ISO 27001, PCI, HIPAA, and SOC 2, and communicated these efforts to leadership.
- Provided subject matter expertise in risk management, supported external audits, conducted gap analyses, assisted with GRC software implementation, and contributed to strategic initiatives by researching GRC trends and best practices.
Manager – Security and Compliance
Corel Corporation (ClearSlide/MindManager)
04.2018 - 03.2021
- Managed and directed the Governance, Risk, and Compliance (GRC) program, effectively communicating control requirements and overseeing security/customer audits.
- Promoted to Manager, taking responsibility for the security and compliance framework (covering standards like ISO 27001, SOC 2, NIST, PCI-DSS, GDPR, CCPA) at Corel Corporation.
- Drove process maturity by performing assessments, addressing gaps, ensuring stakeholder understanding of policies, and collaborating with external auditors.
- Conducted security reviews for customers, delivered security awareness training, and managed threat/vulnerability assessments with subsequent remedial actions.
Assistant IT Manager
GRC, Singapore
08.2014 - 09.2017
- As part of the Business Relationship Management team in Singapore, supported IT governance, risk, and compliance efforts across 10 APAC countries, assessing IT compliance effectiveness and ensuring adherence to central IT governance.
- Drove successful completion of common goals by coordinating with business groups, IT Leads, and senior leadership, including tracking audit findings, supporting information classification and security assessments, and promoting compliance practices.
- Played a key role in achieving GDPR compliance and implementing/enforcing standards like ISO27001/SOC/COBIT, including performing gap analyses to identify vulnerabilities and process maturity levels against company standards.
Project Manager, IT Governance
Accenture
06.2010 - 07.2014
- PMO for Accenture’s Golden Client Argos & Unilever working with Executives & Senior Leadership of the respective Accounts.
- Communicate, facilitate, organize, and coach with cross functional teams to ensure a strong project team that collaborates and works together to ensure a successful project launch.
- Collect and document Stakeholder Requirements, Establish and maintain strong relationships with stakeholders and leadership teams while managing expectations.
Education
Certified in - Managing Risk in Information Age
Harvard University
Cambridge, MA11-2024
Certified in Risk and Information Systems Control -
ISACA
02.2024
Certified Information Systems Auditor -
ISACA
12.2020
Certified Data Privacy Solutions Engineer -
ISACA
12.2020
Certified Information Security Manager -
ISACA
07.2018
Bachelor in Technology - Instruments and Controls Engineering
Indraprastha University
06.2010
Skills
- CyberSecurity Risk Management
- Audit and Compliance
- Teamwork and collaboration
- Stakeholder Management
- Problem-solving
Certification
- Managing Risk in Information Age - Harvard University
- CISA
- CISM
- CRISC
- CDPSE
Timeline
Principal, Cyber Risk
Workday
03.2021 - Current
Manager – Security and Compliance
Corel Corporation (ClearSlide/MindManager)
04.2018 - 03.2021
Assistant IT Manager
GRC, Singapore
08.2014 - 09.2017
Project Manager, IT Governance
Accenture
06.2010 - 07.2014
Certified in - Managing Risk in Information Age
Harvard University
Certified in Risk and Information Systems Control -
ISACA
Certified Information Systems Auditor -
ISACA
Certified Data Privacy Solutions Engineer -
ISACA
Certified Information Security Manager -
ISACA
Bachelor in Technology - Instruments and Controls Engineering
Indraprastha University
Similar Profiles
CALE CONRADCALE CONRAD
Account Executive - Digital at WorkdayAccount Executive - Digital at Workday
Teleshia L. AlexanderTeleshia L. Alexander
Integration Support Analyst at WorkdayIntegration Support Analyst at Workday
Ameer PriceAmeer Price
Client Success Manager at WorkdayClient Success Manager at Workday
AKSHAT VERMAAKSHAT VERMA
Senior Engineering Manager, Machine Learning at TinderSenior Engineering Manager, Machine Learning at Tinder
KALILA INGRAMKALILA INGRAM
Project Leader, Training & Education at RHProject Leader, Training & Education at RH