Open to opportunities

Brydee Neal

@brydeeneal

Message

Strategic cybersecurity executive with extensive GRC experience.

United States

Message

What I'm looking for

I am looking for a role that allows me to leverage my extensive GRC experience while contributing to mission-driven projects that enhance public health outcomes.

I am a strategic cybersecurity executive with over 22 years of experience, including more than 14 years leading Governance, Risk, and Compliance (GRC) programs in highly regulated sectors. My expertise spans HIPAA, SOC 2, SOX, PCI-DSS, and NIST frameworks, enabling me to effectively scale enterprise-wide risk and compliance initiatives in digital health and technology environments. I am recognized for my ability to build audit-ready systems, secure PHI/PII data, and enhance executive risk visibility.

Throughout my career, I have spearheaded enterprise-wide security and risk programs, designed scalable third-party risk programs, and established executive-facing risk dashboards for real-time GRC performance tracking. My roles have included leading global compliance initiatives, directing cross-functional teams, and developing actionable KPIs to surface security posture to senior leadership. I am passionate about mission-driven work that improves public health outcomes and am committed to continuous improvement in compliance and risk management.

Experience

Work history, roles, and key accomplishments

Governance, Risk, and Compliance Lead

FIGS

Nov 2023 - Apr 2025 (1 year 5 months)

Spearheaded enterprise-wide security and risk programs, aligning them with SOX, ISO, and SOC 2 compliance frameworks and enhancing control maturity tracking. Designed and implemented a scalable third-party risk program, which reduced vendor onboarding time by 35% and supported over 200 vendors. Established executive-facing risk dashboards, enabling real-time GRC performance tracking and risk visib

SOX ISO SOC Third Party Risk Management GRC

Principal Security Technical Program Manager

Indeed

Apr 2021 - Nov 2023 (2 years 7 months)

Directed global cross-functional SOC 2, PCI-DSS, and ISO compliance initiatives across various teams, improving audit cycle time and stakeholder coordination. Owned the rollout of the LogicGate GRC platform as Product Owner, standardizing control processes and driving Agile team performance. Developed and executed a comprehensive security roadmap aligned with business objectives and platform moder

SOC PCI DSS ISO LogicGate Agile Scrum Program Management Security Roadmaps KPI Tracking

Principal | Senior Program Manager | Risk & Compliance

CLEAResult

Nov 2010 - Apr 2021 (10 years 5 months)

Led multi-year risk governance and compliance programs post-acquisition, integrating SOC 2 and SOX frameworks across business units. Deployed ZenGRC and built an ISO27005-based enterprise risk register, establishing baseline control maturity and enhancing compliance efficiency across distributed systems. Delivered Salesforce-based platforms protecting regulated customer and energy usage data acros

SOC SOX ZenGRC Salesforce Agile PMBOK

Director of Administration

Generations Community Support Services

Jul 2003 - Nov 2010 (7 years 4 months)

Managed $3M mental health nonprofit operations, holding full accountability for process automation, digital systems, and compliance tracking. Led the enterprise deployment of remote access billing systems, significantly enhancing operational security and efficiency.

Process Automation Compliance Billing Project Management

Education

Degrees, certifications, and relevant coursework

Capella University

B.S., Business Administration, Project Management

Grade: Summa Cum Laude

Graduated Summa Cum Laude with a focus on Project Management. This program provided a strong foundation in business operations and strategic planning.