Accomplished professional with 25 years of experience in evaluating information security risks and architecting advanced security frameworks across critical sectors, including energy, healthcare, finance, oil & gas, water, and manufacturing. I have experience designing and implementing cybersecurity strategies, policies, and processes from the ground up, transforming organizations with little or no security posture into cyber resilient environments. My work spans traditional IT, OT, and AI/ML ecosystems, including the risks these technologies introduce. I have led the development of governance frameworks, risk assessments, and control baselines to ensure secure adoption of emerging technologies while maintaining compliance with industry and regulatory standards.
I also bring knowledge in cloud security architecture across Azure, AWS, and GCP, advising security by design, identity and access controls, and data protection strategies. In my role as CISO and senior advisor, I have regularly presented security strategies, risk appetite, and incident readiness updates to boards of directors, both internally and for client organizations. Working more than half of my career in consulting, I have had a client-facing role throughout the entire go to market strategy.
Skilled in mobilizing cross-functional teams, securing stakeholder alignment, and driving strategic partnerships to advance technology and operational excellence. Known for empowering teams through training, guiding innovation, and motivating individuals to achieve sustainable cybersecurity outcomes. Committed to advancing cybersecurity in critical infrastructure, with a focus on protecting essential assets from evolving risks. This combination of technical depth, executive communication, and business development experience enables me to bridge strategic objectives with actionable security outcomes for diverse stakeholders.
Industry