Summary
Skills
Work History
Education
Overview
Generic

Redeat Abegaz

New York,NY

Summary

Strategic Cybersecurity Governance, Risk, and Compliance (GRC) Leader with nearly 8 years of experience building enterprise-grade security programs for a global financial institution. Expert in aligning IT strategies with NIST CSF and ISO 27001 frameworks to drive regulatory compliance (SOX, GDPR, NYDFS). Proven track record of architecting governance dashboards, reducing enterprise risk through RCSA initiatives, and leading cross-functional teams in audit remediation. Adept at translating complex technical risks into business-aligned insights for executive leadership. Committed to fostering a risk-aware culture through enablement and automation.

Skills

  • Governance & Frameworks: NIST CSF, ISO 27001, COBIT, SOX, GDPR, NYDFS 500, PCI DSS
  • Risk Management: Enterprise Risk Management (ERM), RCSA, Third-Party Risk, Insider Risk
  • Tools & Technologies: ServiceNow GRC, Alyne, Tableau, Power BI, JIRA
  • Leadership: Stakeholder Management, Policy Architecture, Audit Management, Security Awareness Training

Work History

GRC Project Manager

SMBC (Sumitomo Mitsui Banking Corportation)
New York, New York
07.2017 - 03.2025

Governance & Policy Architecture

  • Architected and maintained the enterprise Information Security Policy Framework, authoring and refreshing 60+ security policies and standards aligned with NIST CSF and ISO 27001.
  • Engineered executive governance dashboards in Tableau and Power BI, tracking 20+ KPIs and 15+ KRIs (Key Risk Indicators); provided real-time visibility into risk posture, resulting in a 30% reduction in reporting latency for senior leadership.
  • Orchestrated and led successful activities for Cybersecurity Awareness Month (CSAM), significantly increasing employee engagement and fostering a proactive security culture
  • Designed and storyboarded annual enterprise-wide security training programs, collaborating with SMEs to ensure relevance and impact.

Risk Management & Assessment

  • Established and Directed the Insider Risk Program; convened cross-functional teams (Engineering, SOC, Legal) to define risk appetite and implemented controls that reduced data leakage incidents by an estimated 20% year-over-year.
  • Executed comprehensive RCSA (Risk Control Self-Assessment) reviews, utilizing ServiceNow GRC to map processes, score inherent risks, and validate control effectiveness across the IT landscape.
  • Collaborated with product and Infrastructure leads to integrate security milestones into technology roadmaps, ensuring Security by Design principles were met without delaying release cycles.
  • Developed and executed complex phishing campaigns with varying scenarios, providing hands-on training to identify sophisticated threats and improve user resilience.

NYDFS Program Leadership & Regulatory Compliance

  • Ran the delivery of compliance for NYDFS Part 500 requirements specific to the business unit and ensured full alignment with the Second Amendment to Section 500 compliance.
  • Worked with cross-functional teams, including Corporate Cyber Security and app owners, to oversee the planning and execution of initiatives, actions, and projects to meet strict regulatory deadlines.
  • Managed timelines, resources, and scope to drive towards compliance while leading technology uplift and process improvements across the IT landscape.
  • Developed and maintained comprehensive documentation related to compliance processes, procedures, and project deliverables to ensure audit readiness and seamless regulatory examinations.
  • Provided weekly reporting and updates on status to executive leadership, translating technical compliance metrics into actionable business intelligence.
  • Directed the remediation of over 100 audit issues spanning infrastructure, cloud, and application security while acting as the primary liaison for regulators (NYDFS, Federal Reserve) and Internal Audit.

Education

Bachelor of Science - Public Health

Brown University
Rhode Island
05-2017

Overview

8
8
years of professional experience
Redeat Abegaz