New York City Metropolitan Area
As a GRC Program Manager at MongoDB with over 12 years of experience, I specialize in governance, risk, and compliance with a focus on third-party risk management. My expertise lies in compliance management, strategic communications, and data management, ensuring robust vendor oversight and risk mitigation. I am committed to fostering efficient and scalable processes that align with organizational goals. At MongoDB, I contribute to enhancing third-party risk frameworks while leveraging my CTPRP certification to promote compliance excellence and operational efficiency.
• Led global project assessing all Chubb call centers; reported findings to CISO and CEO. • Conducted risk assessments and remediation aligned with ISO27001 & NIST frameworks. • Partnered with business units across APAC/Far East to strengthen onboarding processes. • Leveraged Bitsight, Dun and Bradstreet and other tools for continuous monitoring and remediation. • Recommended termination of third parties unwilling to align with Chubb’s security standards.
• Assessed vendors against ISO27001, SOC2, and PCI standards; reduced backlog of high-risk vendors by 50% in 3 months. • Conducted on-site assessments of data centers and processing facilities. • Partnered with Privacy SMEs to ensure compliance with international and domestic laws. • Spearheaded incident-related projects minimizing ADP data loss from vendor breaches.