Overview

I evaluate security posture through regulatory frameworks, policy interpretation, and structured risk analysis to help organizations align operations with cybersecurity compliance standards. My CMMC framework documentation demonstrates the ability to translate control requirements into business processes and resource planning. I then applied compliance principles through an SSP NIST Revision 3 gap analysis, identifying deficiencies, mapping controls, and highlighting areas for remediation. I expanded on this work through my NATO cyber policy paper that examines how international regulations and collective defense agreements shape strategic cyber readiness. These artifacts reflect my skill set in compliance interpretation, risk evaluation, and policy-driven security planning.

Artifact 1 – CMMC Framework Documentation (InfoSec Resource Plan) (CONFIDENTIAL)

Artifact 2 – System Security Plan (SSP) Gap Analysis (CONFIDENTIAL)

Artifact 3 – NATO Cyber Policy Paper