GRC Professional
Austin, TX | Open to Remote Opportunities
I'm a cybersecurity and GRC professional who loves translating complex compliance frameworks into practical, cloud-ready solutions.
My career started in internal audit and risk management, where I learned how security and compliance intersect with business goals. Today, I use that foundation to automate AWS compliance checks, close audit gaps, and make cloud security approachable for everyone from engineers to executives.
I believe good security should enable innovation, not slow it down. My goal is to make compliance meaningful, measurable, and human.
Automates AWS access reviews with AI-driven compliance narratives using Amazon Bedrock. Aligns evidence to NIST CSF, SOC 2, and ISO 27001.
Automates AWS Security Hub findings into audit-ready Excel workbooks with dashboards and evidence sheets.
Automates password policy compliance checks against NIST 800-53 IA-5 and SOC 2 CC6.2 standards.
Pre-deployment compliance control using Terraform, OPA, and Conftest to block public S3 bucket access.
Automates detection of inactive IAM access keys and maps findings to SOC 2 and NIST controls.
Certified Information Systems Auditor
AWS Certified
Networking Certification
IT Fundamentals
Linux Foundation
Exploring ideas in GRC, AWS, or cloud security automation? Iโd love to connect and collaborate!