My expertise lies in designing and strengthening control environments using COSO-based ERM frameworks, governance models, and structured risk registers that align risk oversight with strategic objectives. I have led independent assurance engagements and enterprise risk assessments that enhance Board confidence, regulatory readiness, and operational resilience.
In the cybersecurity domain, I specialize in ISO/IEC 27001–aligned ISMS implementation and assessments, including development of the Statement of Applicability (SoA), Annex A control evaluation, and maturity benchmarking. I work closely with executive leadership to evaluate cyber risk exposure, enhance SIEM monitoring effectiveness, and embed secure SDLC practices that reduce technology and compliance risk.
Key areas of impact include:
Establishing enterprise risk management frameworks aligned with COSO
Strengthening internal controls and embedding Continuous Control Monitoring (CCM)
Conducting cybersecurity risk assessments and digital resilience reviews
Leading business continuity and risk mitigation initiatives
Building and mentoring high-performing audit and risk teams
Advising Boards and Audit Committees on governance and assurance matters
My approach integrates governance discipline with forward-looking cyber resilience strategy—ensuring risk oversight not only protects value but enables sustainable growth.
I am open to senior leadership roles in Internal Audit, Enterprise Risk, Governance, and Cyber Risk where I can drive control excellence, regulatory confidence, and enterprise resilience.