Cybersecurity GRC professional with 5+ years driving risk reduction, compliance and resilience across enterprise environments. I translate security gaps into actionable roadmaps, strengthening governance, risk decisions and control effectiveness at scale.

Experienced in NIST CSF and ISO 27001 implementations, leading risk assessments, designing RCMs and securing ERP and cloud architectures. Aligned projects with standards and regulations including ISO 31000, NIST RMF, CIS Controls, SOC 2, PCI DSS, FISMA, COBIT, UK NIS and KSA NCA. Skilled in data privacy (GDPR, CCPA, HIPAA, ISO 27701, PDPA), audit readiness, control gap analysis and third-party risk management, aligning cybersecurity with business outcomes.

Known for delivering measurable impact through security strategy, improving risk posture and accelerating compliance maturity. Highly adaptable and effective in remote settings, collaborating across global teams with consistency, accountability and results-driven execution.