Holiday Skills Carnival:
 Buy 1 Get 1 FREE
AVAIL NOW
Days
Hours
Minutes
Seconds
DAVE
1239 Profile Visits

Dave

14+ Years of Experience

CISSP | CCNP | CCNA | Governance, Risk & Compliance | ISO 27001 | Risk Management

SUMMARY

  • Dave brings over 14 years of experience specializing in Information Security, Governance, Risk, and Compliance (GRC).
  • Provides advice to fintech stakeholders on governance, risk, and compliance strategies aligned with ISO 27001 and NIST frameworks.
  • Leads risk assessments, policy development, and security awareness initiatives for organizations across finance, health, and public sectors.
  • Reviews third-party vendor contracts, identifying exposure and risks; also endorses SaaS and PaaS product designs from a security standpoint.
  • Served as Security Engineer & Architect, delivering full-stack security architecture using tools like Cisco security suite, SIEM, IAM, DLP, and vulnerability management platforms.
  • Led critical projects involving firewall migrations, IAM implementations, system security hardening, and deployment of enterprise security solutions.
  • Expanded cybersecurity focus to include DevSecOps, Data Security, ISMS, cloud security, risk assessment and management, and compliance frameworks.
  • Skilled in implementing and auditing against standards such as ISO 27001, ISO 27002, ISO 27005, ISO 31000, NIST 800-53, and PCI DSS.
  • Has worked on Google Cloud projects integrating big data and AI with security to analyze customer behavior patterns.
  • Delivered major projects on secure network access control using Cisco ISE, including wired NAC and BYOD integration using 802.1x/MAB with policy enforcement.
  • Adept in security architecture, application and web security, vulnerability assessment, penetration testing, and security awareness initiatives.

SKILLS

  • Governance, Risk & Compliance (GRC)
  • Information Security Management System (ISMS)
  • Security Architecture Design
  • Risk Management & Assessment
  • Identity & Access Management (IAM)
  • Cloud Security
  • DevSecOps
  • ISO 27001, 27002, 27005 | NIST 800-53 | ISO 31000
  • PCI DSS Compliance
  • Application & Web Security
  • Vulnerability Assessment & Management
  • Penetration Testing
  • Network Security (Cisco ISE, NAC)
  • Security Audits & Regulatory Compliance
  • Security Awareness & Policy Implementation
  • AI Integration in Security

TRAINING EXPERTISE

  • CISSP
  • CCNP
  • CCNA
TOP