Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Queendalin Okonkwo

Dallas

Summary

Results-driven Governance, Risk, and Compliance (GRC) Analyst with over two years of experience in cybersecurity and environmental policy, specializing in the management of compliance programs across key frameworks such as ISO 27001, PCI-DSS, NIST, GDPR, HIPAA, and SOX. Expertise in conducting risk assessments, enhancing security policies, and performing gap analyses to ensure robust compliance. Proficient in utilizing tools like RSA Archer and ServiceNow for effective incident management and compliance tracking. Collaborates with cross-functional teams to strengthen risk frameworks, achieving a 30% reduction in incident response times and a 15% improvement in overall compliance metrics.

Overview

3
3
years of professional experience
1
1
Certification

Work History

Compliance Analyst

Working Solution (Independent Contractor for TurboTax)
02.2026 - Current
  • Reviewed compliance data to detect potential risks and uphold regulatory standards.
  • developed and implemented internal compliance policies to streamline operational efficiency.
  • Implemented audits of processes to verify compliance with industry standards and regulations.
  • Contributed to report preparation for senior management, summarizing findings from investigations into suspected non-compliant activities.
  • Partnered with cross-functional teams to resolve compliance issues efficiently and promptly.
  • Verified documentation for correctness, maintaining alignment with regulatory requirements consistently.
  • Oversaw industry regulations to maintain organizational awareness of compliance requirements.
  • Organized documentation and records in preparation for upcoming audits and inspections.

Governance, Risk and Compliance (GRC) Analyst

Blossom Home Healthcare Services
02.2023 - 12.2024
  • Led comprehensive review of 10+ essential cybersecurity policies and procedures, guaranteeing complete adherence to HIPAA, PCI-DSS, and NIST standards for maintaining regulatory compliance across the organization.
  • Conducted quarterly gap analyses across enterprise systems, remediating 100% of identified non-compliance issues within strict 30-day window to ensure continuous adherence to HIPAA and SOC 2 standards.
  • Executed thorough compliance program across GDPR, HIPAA, and PCI DSS, instituting continuous monitoring protocols that secured sensitive patient data and lowered compliance-related risks by 15%.
  • Oversaw end-to-end third-party risk management (TPRM) lifecycle by executing security risk assessments for 10+ new vendors annually, identifying critical vulnerabilities and ensuring 100% compliance with organizational security standards prior to onboarding.
  • Collaborated with interdisciplinary teams to enhance service delivery and patient outcomes.
  • Utilized GRC tools such as RSA Archer and ServiceNow to monitor and manage security incidents, decreasing incident response time by 30%.
  • Led comprehensive risk assessments and internal audits across enterprise departments, identifying critical control gaps and executing remediation strategies that strengthened overall security posture by 15%.
  • Recognized and documented IT general control (ITGC) deficiencies during SOX 404 audits while collaborating with business process owners to formulate and execute remediation plans that mitigated risk and averted material weaknesses in internal control environment.
  • Reviewed control effectiveness by examining security questionnaires, independent audit reports (SOC 2, HITRUST, ISO 27001), and technical artifacts securing 100% vendor adherence to organizational security standards and data protection requirements.
  • Analyzed patient data to identify trends and improve care plans.

Education

Bachelor of Science - Accounting

Imo State University
Owerri
05-2014

Skills

  • Proficient in NIST and ISO standards
  • Experience in incident resolution through ServiceNow and Jira
  • Compliance documentation and reporting
  • Vulnerability management skills
  • Analytical problem-solving
  • Proficient in Eramba and Dread
  • Implementation of corrective action strategies
  • Effective due diligence practices
  • Monitoring adherence to regulations

Certification

CERTIFICATE OF COMPLETION

IT Auditing & GRC

CERTIFICATE OF COMPLETION

ISC2

Timeline

Compliance Analyst

Working Solution (Independent Contractor for TurboTax)
02.2026 - Current

Governance, Risk and Compliance (GRC) Analyst

Blossom Home Healthcare Services
02.2023 - 12.2024

Bachelor of Science - Accounting

Imo State University
Queendalin Okonkwo