About

Results-driven Third-Party Risk Analyst with over 5 years of experience in cybersecurity, risk management, and vendor security assessments. Expertise in evaluating third-party risk, analyzing SOC 2 and ISO 27001 reports, and ensuring compliance with industry frameworks such as NIST CSF, CIS Controls, and PCI DSS. Adept at identifying vulnerabilities in vendor relationships, developing mitigation strategies, and managing compliance programs to protect organizational assets. Proven ability to build and enhance third-party risk management (TPRM) programs while fostering collaboration with internal teams and external partners.