United States
Strategized and executed risk management practices to promote balanced risk exposure against business opportunities. • Developed and implemented William Blair’s Vendor Risk Management program, including the operation of cyclical vendor risk assessments and continuous cybersecurity monitoring to identify, understand, and treat risks that arise from the use of strategic sourcing agreements • Collaborated with subject matter experts in multiple, cross-functional teams regarding critical cyber security initiatives, including the Firm’s Ransomware Response Plan and Cybersecurity Dashboard to implement risk mitigation strategies • Plan and facilitate periodic Executive Committee meetings to review the Firm’s risk appetite and strategy for managing key risks; review and recommend guidelines, policies, and processes for identifying and mitigating such risks • Researched future risk trends to identify emerging threats and recommend solutions to adjust the firm’s fluid risk landscape; provide risk management perspective to business areas as they consider proposed changes in their organization, operations, or technologies • Educated businesses and junior resources in understanding and addressing operational, financial, legal, reputational, security, and regulatory risks to promote the development of a risk aware culture
Advised clients in better understanding the risk and opportunities facing their businesses through the execution of risk assessments, maturity development, and project management. • Facilitated the design of control environments with knowledge of key business processes and technologies allowing for organizations to drive operating effectiveness while safeguarding company assets • Consulted with client leadership on strategic plans and business matters to anticipate emerging risks and opportunities, allowing for better decisions to achieve strategic objectives • Advised clients on current risk exposures and potential business impact of identified control issues while providing remediation guidance based on an organization’s risk profile • Managed multiple projects to successful completion through clear communication, expectation setting with stakeholders, deadline management, and within applicable resource and economic requirements • Led client engagements through the project lifecycle, including conducting risk assessments, client meetings, preparing client deliverables, and internal team development
Assessed IT and business processes to provide assurance that the organization’s risk management, governance, and internal controls were operating effectively while monitoring a broad set of risks. • Assisted in Sarbanes Oxley (SOX) program planning, scoping, and risk assessment activities • Assessed the company’s environment and provided recommendations through advisory engagements • Supported leadership with process analysis, design and strategy implementation, including extensive involvement in the development of HaluteLook and Trunk Club business control environments