Schedule Consultation
Schedule Consultation

About

Alexandria F. Seven

www.linkedin.com/in/alexandriafsln

Principal GRC Consultant | Founder, A3INFOSEC
San Francisco Bay Area, CA
Governance, Risk & Compliance | Audit Strategy | Security Policy | Risk Management

About

I’m a GRC and IT Security leader with 15+ years of experience helping SaaS, fintech, healthcare, and global enterprise clients build scalable security and compliance programs.

At A3INFOSEC, I help fast-growing companies align security with business goals—reducing audit fatigue, enabling automation, and managing real risk.

I’ve delivered programs that pass audits, but more importantly, I build frameworks that support long-term operational maturity, cross-functional alignment, and regulatory resilience.

Core Specialties

  • GRC Program Development – Strategic alignment of security, risk, and compliance functions

  • Audit Readiness – SOC 2, ISO 27001, HITRUST, PCI DSS, SOX, HIPAA

  • Third-Party Risk Management – End-to-end TPRM programs with risk tiering and automation

  • Cloud & Enterprise Risk Assessments – Across AWS, GCP, hybrid, and on-premise infrastructure

  • Policy Governance – NIST- and ISO-based policy frameworks with ServiceNow/OneTrust integration

  • GRC Platform Implementation – ServiceNow, RiskConnect, Secureframe, SecurityScorecard, OneTrust

Featured Consulting Engagements

Virtual Assistant SaaS Platform | 2023–2025

  • Delivered SOC 2 Type I, ISO 27001, and HITRUST e1 readiness across a cloud-based environment

  • Implemented TPRM workflows with SecurityScorecard integration and automated vendor tiering

  • Evaluated and deployed Secureframe for compliance automation and executive reporting

  • Developed unified control framework mapped across multiple standards

Technology & Consumer Products Conglomerate | 2022–2023

  • Conducted SIG-based third-party risk assessments

  • Led implementation of real-time vendor monitoring dashboards

  • Designed risk mitigation workflows aligned to business-critical SLAs

Global SaaS & Telecom Provider (Equinix) | 2020–2022

  • Deployed and matured ServiceNow GRC platform (Policy, Risk, Audit modules)

  • Led control mapping, policy lifecycle automation, and UCF alignment for SOC 2, SOX, ISO 27001

  • Delivered executive GRC roadmap and internal education strategy

Fintech Compliance & Audit Lead (RingCentral) | 2019–2020

  • Directed multi-framework audit readiness: HITRUST, C5, ISO 27001, SOC 2

  • Conducted enterprise-wide ISO gap analysis, authored risk treatment plans

  • Launched corporate Trust Center for sharing compliance reports with clients

Professional Summary

  • 15+ years of GRC leadership across SaaS, finance, healthcare, and government

  • Hands-on experience across the full lifecycle: gap assessments, remediation, evidence management, control testing, platform design, and stakeholder reporting

  • Track record of transforming compliance into a competitive advantage through scalable automation

Education & Certifications

B.S. Business Administration – Accounting Information Systems
California State University, Sacramento

  • CISSP (Active through 2026)

  • GRCP, GRCA (Previously held)

  • PCI QSA (Previously held)

  • Ongoing Training: ISO 31000, AWS Security, FedRAMP, Cloud Governance

CONTACT

MAILING LIST

+650-797-1104

© 2025. All rights reserved. A3INFOSEC LLC - www.a3infosec.tech

Based in the San Francisco Bay Area — Serving clients nationwide

Home

About

Services

Our Process

Policies

Contact