Hey, I'm happy you're here
Thanks for stopping by!
I'm a strategic GRC expert based in Dallas, TX, with over 7 years of experience in IT auditing, compliance, risk management, AI governance, and cloud security (AWS/Azure). My expertise includes significant healthcare experience with HIPAA/HITRUST compliance. I currently work as an IT Lead Cybersecurity & GRC Consultant at 7-Eleven Inc.
My focus is on enhancing compliance frameworks (like NIST 800-53, ISO 27001, PCI, SOX, HIPAA/HITRUST) and developing security policies that align IT with business goals, reducing cyber risk and bolstering operational resilience. Learn more about my professional experience in projects.
Get in touch by sending me a note! ✏️
About me
GRC expert focused on healthcare compliance, AI governance, and cloud security.
I enjoy implementing robust GRC frameworks like NIST, ISO 27001, HIPAA/HITRUST, and SOX. I have a proven track record of enhancing compliance postures, automating risk assessments, and improving audit readiness through tools like LogicGate and custom Python scripts for cloud environments.
I'm certified in various cybersecurity domains (CISA, Security+, etc.) and passionate about sharing knowledge. Keep up with my cybersecurity insights in my blog and presentations in talks.
Prior to my current role at 7-Eleven, I served as a Senior Risk Advisory & GRC Consultant at Whitley Penn, delivering end-to-end risk advisory, guiding executive risk remediation based on frameworks like ISO 27001 and SOC 2, and conducting privacy impact assessments for healthcare applications ensuring CCPA and NIST compliance.
I'm particularly interested in research that combines cybersecurity with AI governance to ensure ethical, transparent, and bias-free algorithm deployment while prioritizing data privacy and security, especially within healthcare contexts (HIPAA/HITRUST).
🎓CISA | CompTIA Security+ | Google Cybersecurity Certificate | GenAI Governance
🎓Bachelor of Science in Accounting • University of Texas at Dallas • 2018
Lately ...
- Led HIPAA/HITRUST compliance initiatives for healthcare-related payment systems at 7-Eleven, achieving 100% compliance across 500+ locations.
- Automated 80% of risk assessment workflows using LogicGate, boosting efficiency by 25%.
- Developed Python scripts to automate compliance evidence collection from AWS, reducing audit prep time by 70%.
- Implemented HIPAA-compliant controls across telehealth platforms serving over 1 million patients while at Whitley Penn.
- Implemented AWS security controls across 200+ resources, reducing security findings by 65%.