With 15 years of experience in information security and risk management, along with an additional decade in general IT, I provide consulting services that stabilize complex, high-stress environments. Specializing in cybersecurity and risk management program transformations, I collaborate closely with clients to implement structured, compliant, and effective security solutions while prioritizing strategic goals. While I have extensive experience in the medical sector, where I’ve partnered with hundreds of organizations, I am also adaptable to a variety of industries, tailoring solutions to meet diverse business needs.
I provide consulting services that cover a broad range of security and compliance needs.
I hold certifications from ISACA, ISC2, IAPP, and SANS/GIAC, along with an undergraduate degree in applied cybersecurity and a graduate degree in cybersecurity and information assurance. My experience includes consulting for HIPAA-covered entities, crafting customized programs that protect sensitive data, managing breach responses, and ensuring compliance for long-term success. I have extensive experience authoring and revising policies and procedures to help organizations enhance security operations and achieve governance objectives. I have also completed numerous OCR Data Request responses, none of which resulted in fines or corrective action plan monitoring agreements.