Michael M

Experience Cybersecurity Expert | IT Risk Management | Third Party Risk | PCI-DSS Compliance | HIPPA Compliance | Governance, Risk & Compliance |

My name is Michael Mathew, and I’m a Governance, Risk, and Compliance Analyst with about 5 years of hands-on experience supporting both healthcare and financial institutions. My background is rooted in cybersecurity, IT risk assessments, and regulatory compliance, especially in frameworks like HIPAA, PCI DSS, SOC 2, and ISO 27001. Over the years, I’ve led and supported multiple compliance initiatives including developing and submitting SAQs, AOCs, and ROCs, while helping organizations reduce audit findings and improve vendor risk governance.

I enjoy translating technical risks into business language that leadership can act on, and I’ve consistently helped improve compliance scores and reduce vulnerabilities by applying both strategy and collaboration. In addition to my GRC background, I also hold certifications in Professional Scrum Master II and Product Ownership, which have helped me work efficiently with cross-functional teams and drive agile risk and compliance programs. What drives me most is being able to create structure around risk and deliver measurable improvements in security posture.

PGD Cybersecurity Bsc Public Admin, Masters in Cybersecurity