CAREER ACHIEVEMENTS
Enterprise Risk Management Expert: Successfully implemented enterprise-wide risk assessment methodologies across multiple domains (Finance, IT, Legal, Information Security) resulting in comprehensive risk identification and mitigation.
SOC Compliance Leadership: Led critical SOC 1 and SOC 2 compliance initiatives, supporting audit inquiries, facilitating policy updates, and evaluating product changes for compliance impacts, ensuring continuous certification maintenance.
Risk Process Optimization: Streamlined risk management processes through strategic automation initiatives, reducing manual effort by 35% while increasing assessment accuracy and overall efficiency.
IPO Compliance Support: Contributed to GitLab's successful $15 billion IPO by ensuring robust risk management and compliance frameworks that met regulatory requirements and investor scrutiny.
Cross-Functional Collaboration: Developed strong partnerships with control owners across organizations to provide risk-appropriate control requirements that balanced security needs with business objectives.
Audit Excellence: Led comprehensive IT internal audits across multiple regulatory frameworks (SOX, HIPAA, FedRAMP) with exceptional attention to detail, resulting in enhanced control environments and significantly reduced risk exposure.
Risk Automation Innovation: Designed and implemented risk management automation tools that improved efficiency by 40% while providing more accurate and timely risk insights to leadership.
Vendor Risk Management: Established comprehensive third-party risk assessment programs that effectively identified and mitigated vendor-related security and compliance risks.
Strategic Risk Intelligence: Developed data-driven risk reporting systems that gathered and scaled metrics across organizations, enabling executive leadership to make informed strategic decisions.
Regulatory Compliance Expertise: Demonstrated deep knowledge of multiple regulatory frameworks including SOC 1, SOC 2, ISO 27001, HIPAA, and FedRAMP,More...