Areas where I typically support boards, risk leaders, CISOs, DPOs, and senior delivery leadership.
Enterprise risk models, governance structures, assurance design, and executive-level risk oversight.
Business continuity management, crisis preparedness, recovery planning, and resilience maturity assessments aligned to ISO 22301.
ISO 9001, ISO/IEC 27001, ISO 27701, SOC 2 and CMMI-based assessments with pragmatic maturity roadmaps.
Privacy governance, third-party risk management, and integration of AI Management Systems (ISO/IEC 42001) into enterprise risk and assurance models.