Results-driven Cybersecurity and GRC professional with 4+ years of hands-on experience designing and enforcing information security governance across multi-industry, multinational organizations. Originally trained in aviation human factors — an experience that cultivated a deep understanding of operational risk, crew resource management, and the critical role of human decision-making in high-stakes environments — before transitioning into cybersecurity through a formal MSc specialization. This cross-disciplinary background provides a unique lens on risk management, particularly in regulated and safety-critical industries.
Previously based in Sydney, Australia, with direct hands-on experience implementing and maintaining Essential Eight, ISM, and AESCSF compliance frameworks alongside ISO 27001 certification. Proven track record of
delivering end-to-end compliance programs for PCI DSS, ISO 27001, SOC 2 Type II, and GDPR simultaneously, and leading cross-functional governance teams. Experienced in translating complex regulatory requirements into
actionable security frameworks aligned with TOGAF/SABSA, and in driving collaboration between executive leadership, development teams, and external auditors to achieve measurable improvements in organizational cyber maturity.