Results-driven Information Security professional with over 10 years of experience, including 6.5 years specializing in Governance, Risk, and Compliance (GRC). Proven expertise in conducting internal audits, managing third-party risk assessments, and coordinating enterprise-wide security governance initiatives. Skilled in ensuring regulatory compliance, enhancing security awareness, and mitigating vendor-related risks. Adept at collaborating across teams to implement effective security controls and drive continuous improvement in organizational risk posture.