Governance Risk and Compliance Analyst

• Jul 2022 - Present

• Carrying out information security assessments in line with ISO 27001 standard • Perform Information Security Management System (ISMS) gap assessments to identify and address missing controls • Supporting internal stakeholders in remediating the identified ISO 27001 gaps • Develop and implement new policies and review existing ones to meet standard requirements • Conduct risk assessments to identify threats and vulnerabilities of information assets, and provide remediations for identified risks • Assisting in the maintenance and improvement of the Information Security Management System (ISMS), so that certification to ISO 27001 is maintained Show less

GRC Analyst

• Feb 2021 - Present

• Performing control assessments against corporate cybersecurity framework • Perform review of policies and supporting procedures/processes • Perform assessments of adherence to standards • Work closely with management on security practices • Assess 3rd party vendors for adherence to standards • Develop routine reports in accordance with GRC metrics • Stay on top of changes in the industry as it relates to security. • Performing control assessments against corporate cybersecurity framework • Perform review of policies and supporting procedures/processes • Perform assessments of adherence to standards • Work closely with management on security practices • Assess 3rd party vendors for adherence to standards • Develop routine reports in accordance with GRC metrics • Stay on top of changes in the industry as it relates to security.

Human Resources

• Mar 2017 - Dec 2017

IT Support Specialist

• Aug 2015 - Oct 2015

I provided user support and also handled system maintenance and update I provided user support and also handled system maintenance and update