Over 25 years of active and ongoing IT, Risk, Governance, Compliance, Project Management, Process, Audit, and Controls experience. Most recent experience 12 years as Cyber/Information Security consulting (prior to this 7 years as IT Secuirty and Risk Manager) into different industries and companies/organisations, regarding GRC, IT security, PCI DSS (certified QSA), ISO 27001 (certified Lead Auditor, Lead Implementer, and Trainer), CPS-234, NIST CSF (certified NIST CyberSecurity Consultant), and.....anything related to IT risk, security, compliance, and goverance. Performed compliance activities against a variety of Federal, State, and Industry legislation and regulations, assessments against all the major information security standards and frameworks, and audit, and advisory, with gap analysis, recommendations, and remediation.   

Here is a detailed description of the courses that the trainer is specialized in and their related experience.