Crystal Harris
Certified ISO 42001 Lead Auditor AI Risk and Compliance for SMBs
Habilidades
Revisa mis servicios


Porfolio
Experiencia laboral
GRC Risk Analyst
Self Employed • Freelance
Feb 2024 - Present • 2 yrs 5 mos
Governance, Risk, and Compliance (GRC) professional specializing in cybersecurity risk assessments, NIST CSF 2.0 gap analyses, ISO 27001 compliance, HIPAA security reviews, policy development, and remediation planning. Develop cybersecurity documentation, risk registers, executive dashboards, compliance crosswalks, and security recommendations aligned with industry frameworks and regulatory requirements. Experienced in translating technical risks into business-focused recommendations for leadership and stakeholders. Key areas of focus include cybersecurity governance, risk management, compliance assessments, security awareness, vendor risk management, cloud security governance, and audit readiness.