Adelaide Correa

GRC Specialist · Industrial Alliance

EN · ES · basic FR

About

CISM-certified GRC specialist in the financial and insurance sectors — focused on enterprise risk management, regulatory compliance, third-party risk, and AI governance. I translate NIST, ISO 27001, SOC 2, and COBIT into controls the business can actually operate.

Day to day: delivering cybersecurity recommendations, running risk assessments and control testing across apps, infrastructure, and Azure cloud, building STRIDE threat models, and reporting findings to senior leadership.

Focus areas

Governance Risk & Compliance Enterprise Risk Third-Party Risk NIST ISO 27001 SOC 2 COBIT Azure Cloud Security AI Governance (AI GRC) STRIDE ServiceNow IRM

Experience

2022 — PRESENT

Security AnalystIndustrial Alliance

2025

SME, CISM Task ForceISACA

2018 — 2021

Cybersecurity Adv. Diploma (Co-op)Fanshawe College

Credentials

CISMCertified Information Security Manager · ISACA · 2025

CCSKv5Cloud Security Knowledge · CSA · 2025

CCCertified in Cybersecurity · ISC2 · 2024