SKAdvisors

Fractional Security Program Lead

Security program leadership when the team needs execution, not another framework.

SKAdvisors helps SaaS and PE-backed companies turn security, compliance, audit, and M&A requirements into a working program — control mapping, remediation tracking, evidence strategy, and executive reporting included.

Book a consultation

CPA · CISSP · CISABig Four advisory · Banking · High-growth technology

Built for external scrutiny

The work is designed for leadership teams that need a credible control story and fewer surprises in front of customers, assessors, auditors, and boards.

Execution, not just advice

Control mapping, remediation tracking, evidence strategy, and cross-functional coordination — the actual program work, not a report delivered and walked away from.

Security, audit, and finance in one profile

CPA, CISSP, and CISA credentials help translate control issues into decisions that security, legal, finance, and executive stakeholders can all act on.

Background

Both sides of the audit table.

Big Four professional services advisory, several years in Canadian banking doing risk and cybersecurity control testing, and in-house security program leadership at a high-growth technology company. That combination means I know what assessors look for and how programs need to hold up in regulated environments.

Security, audit, and finance credentials in one profile means I can run the program work and translate risk for leadership, legal, and board stakeholders — without a separate layer in between.

Relevant background

  • Technology risk and cyber strategy at a Big Four professional services firm
  • Risk and cybersecurity control testing in Canadian banking
  • In-house security program leadership at a high-growth technology company
  • Experience supporting AI governance and enterprise AI agent deployment programs
  • Experience across technology, SaaS, financial services, and regulated markets
  • US CPA with SOC reporting experience — CISSP and CISA certified
  • Cybersecurity instructor, University of Toronto

Service

One service. Clear scope. Real execution.

Companies with SOC 2 backlog, customer security requirements, audit timelines, or M&A readiness pressure need someone who can run the program — not just advise on it.

01

Fractional Security Program Lead

Senior-level security program leadership on a part-time basis — running the actual work across controls, evidence, remediation, and cross-functional coordination.

  • Control and gap mapping against SOC 2, ISO 27001, or customer requirements
  • Risk register, remediation tracking, and evidence strategy
  • Cross-functional program leadership across security, engineering, and legal teams
  • Executive updates, board-ready risk summaries, and assessor coordination
  • Policy and procedure work, and control owner enablement
  • Audit readiness support from initial design through final assessment

Contact

Start with your current pressure point.

Preparing for a certification, closing customer security requirements, working through audit pressure, or building a security program from scratch — book a consultation and we can figure out the right next step.

Book a consultation

skadvisorsca.com · Remote across North America