- Lead assessments and audits of security and IT control environments
- Design, implement, and mature cybersecurity and compliance programs
- Develop risk registers, conduct risk assessments, and track remediation efforts
- Create and refine policies, standards, and procedures aligned with top frameworks
- Prepare clients for internal audits and external assessments
- Translate technical, regulatory, and business requirements into clear, actionable deliverables
- Communicate findings, manage client feedback, and drive outcomes
- Mentor junior analysts and contribute to the growth of the GRC practice
- Participate in peer review of deliverables
HIPAA