Himalayas logo
Security Compliance UserSU
Open to opportunities

Security Compliance User

@securitycomplianceus

Experienced Senior Security Compliance Manager specializing in cyber governance.

United States
Message

What I'm looking for

I seek a role that fosters innovation while ensuring compliance, with opportunities for growth.

I am a seasoned Senior Security Compliance Manager with nearly two decades of experience in cyber governance. My expertise lies in translating complex frameworks into actionable business-risk decisions, enabling innovators to operate swiftly while adhering to regulatory standards. I have successfully unified various compliance frameworks, including NIST CSF 2.0, ISO 27001, and PCI DSS, into streamlined policies that enhance operational efficiency.

At DHS, I have led multiple audits and automated compliance processes, achieving zero major findings and significantly reducing duplicate evidence. My work with Power BI dashboards has transformed executive reporting, allowing for real-time KPI tracking and improved decision-making. I am passionate about partnering with engineering teams to identify and mitigate risks, ensuring that compliance does not hinder innovation.

Experience

Work history, roles, and key accomplishments

D(
Current

Senior Security Compliance Manager

DHS Contractor (TMR)

Jan 2019 - Present (6 years 7 months)

Consolidated 25 policies and 220 controls into a single framework mapping NIST CSF 2.0, ISO 27001, SOC 2 Type 2, PCI DSS 4.0, NY DFS 500, and SOX, reducing duplicate evidence by 35%. Led 8 audits (internal, ISO 27001 Stage 1/2, SOC 2) by coaching 40 control owners, reviewing 500+ artifacts, and achieving 0 High findings.

NIST CSFISO 27001PCI DSSSOXPower BISharePoint)NessusTenable.ScGitlab CI
TS

Cybersecurity Risk & Policy Analyst

TW Solutions

Jan 2013 - Present (12 years 7 months)

Drove 12 SaaS products to FedRAMP Moderate and SOC 2 Type 2 attestation, accelerating certification by 25% with OSCAL evidence templates. Merged PCI DSS, HIPAA, and ISO controls in Archer GRC, saving audit teams 300 hours/year and standardizing policy language.

FedRAMPPCI DSSHIPAA)ISOArcher GRCActive DirectoryWindows NTLM

Education

Degrees, certifications, and relevant coursework

California State University, Sacramento logoCS

California State University, Sacramento

Bachelor of Science, Economics

Completed a Bachelor of Science degree with a focus on Economics. Gained a strong foundation in economic principles and analytical methods.

Tech stack

Software and tools used professionally

Splunk logo

Splunk

GitLab logo

GitLab

GitLab CI logo

GitLab CI

Gmail logo

Gmail

Terraform logo

Terraform

Windows logo

Windows

Tenable.sc logo

Tenable.sc

ServiceNow logo

ServiceNow

Availability

Open to opportunities

Location

United States

Authorized to work in

United States

Job categories

Security Compliance ManagerCybersecurity AnalystCompliance OfficerRisk Management ConsultantGovernance And Compliance SpecialistSenior Compliance ManagerSenior Compliance SpecialistSecurity Compliance AnalystSecurity Compliance OfficerSenior Compliance Officer

Skills

NIST CSFISO 27001PCI DSSPolicy LifecycleArcher GRCPower BIAzure ADRBACSAMLOAuthGitlab CITenable.ScSplunkGitlabWindowsServiceNowGmailTerraform

Interested in hiring Security Compliance?

You can contact Security Compliance and 90k+ other talented remote workers on Himalayas.

Message Security Compliance

People also viewed

View all talent

Find your dream job

Sign up now and join over 100,000 remote workers who receive personalized job alerts, curated job matches, and more for free!

Sign up
Himalayas profile for an example user named Frankie Sullivan
Security Compliance User - Senior Security Compliance Manager - DHS Contractor (TMR) | Himalayas