Profile Summary

Seasoned cybersecurity policy analyst with 8+ years of experience in policy development, regulatory compliance, and risk governance. Proficient in mapping controls to NIST CSF and ISO 27001, and in translating complex regulations into actionable policies. Skilled collaborator with cross functional teams and ability to translate policy requirements into training and governance frameworks.

Experience

Skills

• Policy development and governance
• Regulatory mapping and compliance (NIST CSF, ISO 27001, SOC 2, PCI DSS)
• Risk assessment and treatment
• Regulatory reporting and audit support
• Privacy laws and data protection
• Incident response policy and playbooks
• Vendor and third party risk management
• Training and awareness

Certifications

• CISA — Certified Information Systems Auditor
• CISSP — Certified Information Systems Security Professional
• ISO 27001 Lead Implementer
• CIPP/US — Certified Information Privacy Professional

Education

B.S. in Political Science, University of California, San Diego, 2010 – 2014

M.S. in Cybersecurity Policy, University of Texas at Dallas, 2014 – 2016