Senior Cyber Security & GRC Specialist

Senior Cyber Security and GRC professional with over 20 years of experience in IT security operations, governance, risk management, and compliance. Proven expertise in implementing ISO 27001, GDPR, DORA, and other international security standards. Extensive experience in global audit and compliance projects, cloud security, and automation of security processes. Strong skills in security framework implementation, incident response, and executive reporting. Focused on risk reduction, compliance assurance, and efficient process management.

Conducted 120+ risk assessments for ISO 27001, DORA, and SOC compliance across critical systems of an international automotive manufacturer Improved audit readiness score from 70 % to 95 % within 12 months Automated KPI dashboards in Power BI, reducing manual reporting time by 45 % Integrated SIEM alerts with risk registers to improve incident visibility and reduce response time by 30 % Executed 50+ audits in 8 EU countries, reducing non-conformance findings by 30 % Implemented GDPR gap closure plans and automated compliance workflows via ServiceNow API Built executive risk heat maps in Power BI for quarterly compliance reviews Streamlined incident classification and RCA processes, reducing SLA closure from 72 to 24 hours Built and maintained governance and control frameworks in partnership with audit teams Directed global security operations and monitoring for over 60 client accounts across Europe & US Standardized audit checklists, achieving 100 % SLA and SOW compliance Automated vulnerability remediation processes, reducing remediation time by 50 % Managed IT governance & risk operations for enterprise accounts, ensuring zero major incidents and full SOW compliance Coordinated global audit engagements and strengthened control frameworks