Dustin P

Principal GRC Consultant

Not Found • Fulltime

Oct 2021 - Mar 2026 • 4 yrs 5 mos

• Led governance, risk, and compliance engagements for 25+ enterprise clients across healthcare, financial services, and technology, managing an aggregate portfolio of $3.5M annually • Designed and implemented ISO 27001 ISMS for 8 organizations, achieving 100% first-time certification success rate with zero critical findings; structured knowledge transfer ensured longterm program sustainability • Built risk assessment framework using NIST CSF and ISO 31000, including risk register design and quantitative scoring methodology, deployed across 15 client environments — drove 40% reduction in high-severity findings • Executed third-party vendor risk assessments for financial services clients managing 200+ vendor relationships, identifying $1.2M in potential risk exposure • Established governance processes and security steering committee structures for 10+ clients, delivering executive-level risk reporting, policy workshops, and board-ready compliance dashboards