Leading client-facing implementations of ISO 27001, ensuring seamless integration of information security practices.
- Demonstrated expertise in guiding and advising clients through the entire ISO 27001
implementation process, from initial assessment to certification.
- Customizing strategies to align with diverse organizational structures, effectively addressing client-specific security needs.
- Communicate complex security concepts to clients, facilitating understanding and buy-in for adherence to ISO 27001 standards.
- Delivering comprehensive solutions that enhance clients' information security posture while meeting ISO 27001 compliance requirements.
Maintained compliance frameworks, policies, and documentation to support audits.
- Maintained and revised policy procedures for general operation of compliance program.
- Organized training programs to educate company staff on benefits and consequences of complying or defying regulations.
- Stayed abreast of applicable laws and state or federal regulation to report violations.
- Developed systems to track and monitor compliance with regulatory requirements and internal policies.
- Established internal controls and processes to support compliance through project management and engagement of key stakeholders.
- Carried out assessments to identify privacy-related risk.
- Carried out initial and periodic privacy impact assessments.
- Identified vendor to support Privacy Implementation in the organization.
- Conducted Vendor/Sub contractor compliance assessments for vendors associated with the organization.
- Reviewing RFP on Compliance requirements.
- Maintained detailed database of compliance data, activities and actions taken.
- Performed Post Contract Compliance assessments and produced reports outlining assessments completed and follow-up recommendations.
