Cybersecurity Compliance | CMMC Certified Professional (CCP) | Governance, Risk, and Compliance (GRC) | AI/ML Analysis
A deterministic AI evaluation tool that helps students assess whether AI generated answers are safe to submit, cite, or rely on.
A Streamlit-based cybersecurity analyst workspace for IP investigation, risk scoring, tagging, and case history tracking.
I am a cybersecurity and data science professional focused on governance, risk, and compliance (GRC), with a strong interest in building practical, real-world security solutions. My work centers on developing tools and systems that combine cybersecurity principles, data analysis, and automation to improve decision-making and strengthen organizational security.
With a background in leadership and operations, I bring a structured and disciplined approach to problem-solving. I am particularly interested in areas such as CMMC compliance, risk assessment, threat intelligence, and AI-driven security tools. My goal is to bridge the gap between technical implementation and strategic security frameworks by creating solutions that are both effective and accessible.
Through my projects, I aim to demonstrate not only technical capability, but also the ability to think critically, design systems, and apply cybersecurity concepts in real-world scenarios.
- CMMC readiness
- NIST SP 800-171 control alignment
- NIST SP 800-53 familiarity
- NIST Risk Management Framework (RMF)
- NIST Cybersecurity Framework (CSF)
- Governance, Risk, and Compliance (GRC)
- Security control validation
- Compliance reporting and documentation
- Risk assessment and remediation planning
This GitHub portfolio contains demonstration projects and documentation focused on cybersecurity compliance, security governance, and structured risk analysis.
All projects are built locally first and later published to GitHub as polished demonstration versions for portfolio presentation.
- TrustLens - AI Trustworthiness Analyzer
- IP Intelligence Analyst Workspace
- CMMC compliance readiness tools
- Cybersecurity governance documentation
- Security control analysis
- Compliance dashboards and reporting
- Cybersecurity research publications
Leadership experience in compliance inspection environments supporting structured documentation, risk awareness, and operational reporting.
Technical exposure includes:
- Windows
- Linux
- Active Directory fundamentals
- enterprise IT support environments
- documentation and reporting workflows
State University of New York (SUNY) Canton
Bachelor of Science in Cybersecurity
Minor in Data Science
Expected Graduation: December 2026
CMMC Certified Assessor (CCA) | compTIA Security+
CMMC Certified Professional (CCP)
π Portfolio: Cyber
πΌ LinkedIn: Profile
π₯ YouTube: Channel
π§ Email: [email protected]
Publications related to cybersecurity governance and compliance research are available through Zenodo and connected to my ORCID research profile and Portfolio page
Β© 2026 Eliza Ochoa - TANO Research