all site content is being moved over to EJMEDIA.CA - please visit us there!

GRC Work & Projects

In cybersecurity, Governance, Risk, and Compliance (GRC) is a framework that ensures an organization aligns its security practices with regulatory requirements, effectively manages risks, and implements strong governance policies. Governance involves setting clear security policies and procedures to guide the organization’s approach to cybersecurity. Risk management focuses on identifying, assessing, and mitigating potential threats to reduce the impact of cyberattacks or data breaches. Compliance ensures that the organization adheres to legal and regulatory standards, such as GDPR or HIPAA, while following industry best practices. Together, GRC helps create a well-structured, secure, and compliant cybersecurity strateg

AI Education Startup - Evaluation & Policy Development

September 16 - October 11 2024
Led a small team of cybersecurity professionals contracted to perform an extensive cybersecurity evaluation for an AI-focused education startup out of Toronto, Ontario (NDA in place). My contributions included conducting a web vulnerability assessment, creating comprehensive training materials and presentations on cybersecurity awareness, and drafting several critical security policies, including those related to AWS security, remote work, and WordPress security. Additionally, I performed an in-depth risk management analysis, web performance scoring using Lighthouse metrics, and prepared industry competitor reports.

Page updated

Google Sites

Report abuse