• Own and lead the enterprise Business Continuity and Disaster Recovery (BC/DR) program, including strategy, governance, and execution. • Define and maintain BC/DR frameworks, policies, and standards, including RTO/RPO expectations, system tiering, and recovery strategies. • Drive enterprise-wide Business Impact Analysis (BIA) processes to identify critical services, dependencies, and recovery priorities. • Establish and oversee BC/DR testing strategy, including scenario design, execution, and continuous improvement of recovery capabilities. • Evaluate organizational resilience and identify gaps, risks, and opportunities to improve recovery readiness. • Advise leadership on resilience risks, recovery tradeoffs, and business continuity investment priorities. • Report on BC/DR readiness and testing outcomes to senior leadership and support board-level reporting. • Lead or support risk assessments for critical systems, strategic initiatives, and operational processes. • Define and evaluate risk related to policy exceptions, resilience gaps, and third-party dependencies. • Collaborate with business and technology leaders to embed resilience into operational processes and system design.

• Lead cybersecurity and compliance engagements for clients in healthcare and regulated industries • Conduct cybersecurity and compliance assessments • Evaluate security postures and identify risks • Develop remediation plans and assist with policy development • Prepare professional assessment reports and deliver training programs • Support virtual CISO (vCISO) engagements

• Define & manage security requirements – Identify, define, and oversee security requirements for various projects and systems. • Ensure compliance & risk mitigation – Ensure all projects adhere to established security standards, reducing potential security risks. • Support development teams – Collaborate with development teams at headquarters to formulate and refine security requirements. • Implement requirements management tools – Utilize tools like Polarion for structured requirements management. • Continuous monitoring & improvement – Regularly update, track, and ensure fulfillment of security requirements throughout the project lifecycle.

• Implement Microsoft Purview Data Loss Prevention (DLP) across cloud apps, endpoints, and file systems • Design and deploy data classification and retention policies using Data Lifecycle Management • Configure and manage Microsoft Intune for device enrollment, compliance, and security controls • Support Apple device management via Apple Business Manager integration • Assist with multi-factor authentication (MFA) and secure access configurations, including VPN use cases • Test, monitor, and refine policies for effectiveness and usability • Deliver clear documentation outlining configurations, workflows, and recommendations