Senior Information security specialist with over a decade of experience in safeguarding digital assets. Passionate about driving innovation and securing businesses, I bring deep expertise across security architecture and engineering, devsecops and governance, risk, and compliance (GRC). On the technical front, I have designed and implemented secure architectures across Azure, GCP, and hybrid environments, led penetration testing engagements, advanced identity and access management programs, and driven initiatives in vulnerability management, data protection, and threat analysis. Equally, I excel in GRC by developing enterprise-wide security standards, leading ISO 27001 and COBIT-aligned assessments, ensuring regulatory compliance, and embedding security into organizational strategy. Supported by certifications such as CISSP, CCSP, CISA, CRISC, and TOGAF, I uniquely combine technical depth with strategic oversight to deliver scalable, compliant, and business-aligned security solutions. Known for my collaborative and forward-looking approach, I partner with executives, engineers, and business leaders alike to reduce risk, strengthen resilience, and enable secure digital transformation