About Benita
English
Native or bilingual
Experience
- CozinsCyber Security GRC AnalystJanuary 2024 - Today (2 years and 6 months)Developed a comprehensive GRC portfolio demonstrating hands-on capability across governance, risk, and compliance disciplines, aligned to recognised industry frameworks.Governance & Framework Alignment• • Aligned organisational controls to ISO/IEC 27001 Annex A, identifying gaps and recommending remediation.• • Mapped security posture against NIST CSF domains (Identify, Protect, Detect, Respond, Recover).• • Contributed to ISO 22301-aligned Business Continuity documentation and governance structures.• • Designed policy hierarchy frameworks, including standards and procedures documentation.Risk Management• • Conducted structured security risk assessments identifying threats, vulnerabilities, likelihood, and impact.• • Maintained risk registers using qualitative scoring methodology; developed risk treatment plans with defined ownership.• • Monitored Key Risk Indicators (KRIs) and reported risk trends to senior stakeholders.• • Performed control gap analysis and recommended targeted remediation actions.Compliance & Regulatory Support• • Produced PCI DSS readiness documentation, including control mapping and compliance tracking templates.• • Developed GDPR artefacts: data processing records, data retention schedules, and DPIA templates.• • Supported internal compliance audits, documented audit findings, and tracked remediation progress.Third-Party Risk Management (TPRM)• • Developed supplier due diligence questionnaires aligned to ISO 27001 and PCI DSS.• • Created supplier risk scoring methodology and third-party onboarding/review process documentation.• • Supported ongoing vendor security assurance reviews.Policy & Documentation• • Drafted and maintained: Information Security Policy, Risk Management Policy, Access Control Policy, Incident Response Plan, BC/DR Plan, Acceptable Use Policy, Data Protection & Privacy Policy.
- Cyber & Technology EnvironmentScrum Master / Delivery Lead —January 2022 - January 2026 (4 years)Led cross-functional teams within security-focused and regulated delivery environments, with direct contributions to governance, risk visibility, and compliance maturity.• • Embedded risk identification and mitigation tracking within delivery workflows.• • Facilitated collaboration between IT, security, and business stakeholders to ensure regulatory alignment.• • Supported audit readiness through improved documentation, traceability, and change management controls.• • Introduced reporting dashboards, improving transparency of operational and compliance risks.• • Strengthened change management controls in regulated environments.
Recommendations
Be the first to recommend Benita
Help this freelancer shine by sharing your experience working together.
These freelancer profiles also match your criteria
Agatha Frydrych
Backend Java Software Engineer
4.7
(3)
2
Baptiste Duhen
Fullstack developer
4.6
(4)
5
Amed Hamou
Senior Lead Developer
4
(2)
7
Audrey Champion
Web developer
4.3
(3)
4
Education
- MScMiddlesex UniversityMSc
- BScMiddlesex UniversityBSc