Results-driven Security and Risk Specialist with hands-on experience in conducting enterprise-level risk assessments, business continuity planning, and compliance evaluations aligned with ISO and NIST frameworks. I am skilled in leveraging tools like ServiceNow and the Microsoft Office Suite to manage documentation, track remediation efforts, and present actionable insights to senior leadership. Known for a methodical approach, strong communication skills, and a commitment to enhancing organizational resilience through strategic risk governance.
· Led comprehensive risk assessments for critical business processes and facilities, identifying gaps and recommending mitigation strategies.
· Collaborated with internal process owners to evaluate evidence and implement risk-reducing procedures.
· Analyzed complex internal workflows to ensure alignment with organizational policies and industry best practices.
· Conducted security risk assessments and audits to ensure compliance with industry regulations.
· Managed IT security policies and frameworks aligned with NIST, ISO 27001, and PCI DSS.
· Managed enterprise-level security initiatives, ensuring timely delivery and cross-functional coordination.
· Presented findings and strategic recommendations to senior leadership, enhancing organizational resilience.
· Collaborated with stakeholders to improve security posture and incident response protocols.
· Conducted Technology Resiliency Risk gap assessment, current state assessment of resiliency gaps and partnered in orchestrating remediation plans.
Handled Business Continuity Plans for the Service Delivery Teams.
Conducted a Business Impact Analysis and Risk Assessment across various functions.