01 May 2022 - May 2025
Global security programs
Deloitte
Cyber Security ASA
Third-party risk, cryptographic governance, audit readiness
MetaFIFA500+ assessments
- Managed 500+ third-party risk assessments for global clients like Meta and FIFA, evaluating security posture against NIST 800-53, SOC 2, and ISO 27001.
- Built a cryptographic governance program, defining standards for AWS KMS, Azure Key Vault, and HSMs.
- Conducted technical deep-dives on penetration test reports and secure SDLC policies to validate vendor controls.
- Technical lead for external audits, partnering with engineering teams to close findings and improve security maturity.