Andron Cristian

Services I Offer:

GRC Framework Design & Implementation – Develop and implement governance, risk, and compliance frameworks aligned with organizational goals and risk appetite.

Information Security Management – Lead security initiatives, ensure ISO 27001 compliance, and manage SOC 1/SOC 2 audits.

Regulatory Consulting – Advise companies on GDPR, NIS2, CPRA, NYDFS, EU AI Act, and other regional/global regulations.

Risk & Compliance Assessments – Conduct gap analyses, risk assessments, and provide actionable recommendations.

Project & Program Leadership – Manage cross-regional compliance programs, digital transformation initiatives, and business continuity strategies (BCP/DR).

Key Achievements:

Successfully led multiple GRC implementation projects for multinational organizations, streamlining compliance processes and improving operational efficiency.

Delivered tailored risk and compliance solutions to Forbes-listed companies and high-stakes M&A environments.

Hold advanced certifications (ISO 27001 Lead Auditor, CISA Bootcamp, CISSP Bootcamp) and a Master’s in Cybersecurity, combining regulatory knowledge with technical expertise.

Why Work With Me:
I bring a global perspective, hands-on experience in complex environments, and a proven ability to deliver results on time and on budget. I work flexibly as a freelance consultant or on short- to long-term contracts, supporting organizations in achieving robust compliance, secure operations, and risk-aligned governance.