Vince specializes in security compliance and strategy. As a certified information systems auditor (CISA), Vince has experience in IT security auditing, security strategy development and project management.
In addition to strategy work, Vince has in depth knowledge of various security frameworks including PCI, NIST CSF, ISO 27000 and ISF.
- Assessed the maturity of organization’s Information Security program against the ISO 27000 and NIST CSF frameworks.
- Assisted in conducting threat and vulnerability management assessments across various organizations. Including network device assessments, vulnerability scanning, patch management procedures, etc.
- Assisted various organizations in developing their compliance strategy. Including scope reduction, vendor management and developing a governance framework for their PCI program.