I am an accomplished information security professional with over 16 years of experience in leading and implementing comprehensive security strategies across diverse industries, including SaaS, healthcare, and government sectors. My expertise spans risk management, compliance frameworks, cloud security, and vulnerability management. Throughout my career, I have successfully designed and executed enterprise-wide security initiatives, achieving industry-recognized certifications such as ISO 27001 and SOC 2 Type II, while advancing organizational readiness for frameworks like FedRAMP and HITRUST.
My leadership includes managing multi-cloud environments, streamlining security operations, and enhancing risk postures by integrating security into the software development lifecycle (SDLC). I specialize in aligning business objectives with security requirements, developing scalable policies, and building a culture of awareness through engaging security training programs. With hands-on experience in compliance with standards like GDPR, HIPAA, and NIST CSF, I bring a pragmatic, results-driven approach to safeguarding critical systems and data while ensuring regulatory adherence and operational excellence.
Best Regards,
Larry SmithMore...