Professional Summary
GRC, Information Security, and IAM professional with a B.S. in Information Science (Information Security concentration, USF, 3.76 GPA) and five years of progressive experience at a global enterprise SaaS company — executing identity governance controls, access compliance documentation, and SOC 2-aligned audit evidence. Hands-on experience with JML lifecycle workflows, RBAC enforcement, SSO/SAML compliance triage, NIST CSF 2.0 policy development, and compliance gap analysis; CompTIA Security+ SY0-701 in progress (target September 2026), SC-300 planned.
Professional Experience
Tampa, FL · Self-Employed
- Built Least by Juste™ — live access review automation platform for SMBs (app.getleast.io); automates Google Workspace access reviews and generates SOC 2-aligned audit evidence for cyber insurance and compliance documentation.
TeamViewer · Clearwater, FL
- Executed JML provisioning/deprovisioning workflows for 200+ enterprise accounts, enforcing RBAC and least-privilege controls; identified and escalated policy violations and access anomalies as governance findings to security leadership.
- Performed daily compliance gap analysis on enterprise SSO/SAML configurations (10–15 cases); assessed control deficiencies against SOC 2 and NIST CSF requirements, documented findings, and coordinated remediation with Level 2 engineering.
- Selected as Internal Security Champion — led cross-functional compliance initiatives and supported SOC 2-aligned audit documentation and access control evidence collection cycles across 200+ enterprise accounts.
- Authored 10+ SOPs and knowledge base articles documenting access control standards and authentication compliance requirements; translated regulatory obligations into actionable guidance for enterprise IT decision-makers.
TeamViewer · Clearwater, FL
- Qualified enterprise IT stakeholders on identity governance and access control requirements across 30–50 monthly engagements; translated SOC 2 and SSO governance concepts for technical and non-technical buyers.
TeamViewer · Clearwater, FL
- Prospected 200+ enterprise accounts leading with compliance and access control discovery to identify SSO gaps, IAM deficiencies, and security risk exposure as qualification criteria.
Best Buy · Stuart, FL
- Designed and delivered onboarding training for new team members; created SOPs and training materials covering product knowledge and service standards. Consistently ranked among top performers in consumer electronics sales.
GRC & Identity Governance Portfolio
2026 · policy-documents/
Cybersecurity policy whitepaper anchored to NIST CSF 2.0; identified 4 risk conditions (V-01–V-04) and mapped each to specific NIST CSF 2.0 controls spanning the GOVERN, IDENTIFY, and PROTECT functions; documented HIPAA, FIPA, Florida Bar Rule 1.6(c), and NIST SP 800-63B compliance obligations. Includes NIST CSF-mapped compliance documentation and roles & responsibilities matrix.
2026 · framework-mapping/
Practitioner-level crosswalk mapping all 6 NIST CSF 2.0 functions to SOC 2 Trust Services Criteria; identified 5 coverage gaps with remediation guidance and dual-framework evidence collection matrix.
Apr 2026 – Present · Live Lab
Configured live tenant (3 users, 4 Conditional Access policies: MFA enforcement, legacy auth blocking, location-based controls, privileged access); simulated 6 JML lifecycle events; produced audit log evidence package mapped to SOC 2 CC6.1–CC6.3 and NIST 800-53 AC-2.
2025–2026
Quarterly access review workflow with RBAC matrix mapped to SOC 2 CC6.3; JML governance controls with SLA targets mapped to ISO 27001 A.5.15–A.5.18 and NIST 800-53 IA-2; phased MFA governance plan with break-glass procedures.