Information Security Projects

Developed a comprehensive PCI DSS v4.0.1 compliance framework for a major financial services company, reducing audit scope by 40% through effective network segmentation.

Designed and implemented a scalable TPRM program for a global healthcare organization, standardizing vendor risk assessment processes and improving compliance visibility.

Created a comprehensive security governance framework aligned with ISO 27001 for a multinational retail corporation, establishing clear roles, responsibilities, and reporting structures.

Developed an executive-level security metrics dashboard providing real-time visibility into key risk indicators and compliance status across the organization.

Established a cloud security assessment methodology for evaluating AWS and Azure environments, ensuring consistent security controls across cloud deployments.

Created a DPIA framework to evaluate privacy risks in new systems and processes, ensuring compliance with data protection regulations.