Andron Cristian

GRC, Information Security, Risk Management

Talent

Bucureştii Noi, Municipiul Bucureşti65 EUR/orăMembru din 3 octombrie 2025

Angajează serviciile lor

Solicită o ofertă fără obligații

information security managementproject leadershipgrc framework designregulatory consultingrisk assessments

Despre

Services I Offer:

GRC Framework Design & Implementation – Develop and implement governance, risk, and compliance frameworks aligned with organizational goals and risk appetite.

Information Security Management – Lead security initiatives, ensure ISO 27001 compliance, and manage SOC 1/SOC 2 audits.

Regulatory Consulting – Advise companies on GDPR, NIS2, CPRA, NYDFS, EU AI Act, and other regional/global regulations.

Risk & Compliance Assessments – Conduct gap analyses, risk assessments, and provide actionable recommendations.

Project & Program Leadership – Manage cross-regional compliance programs, digital transformation initiatives, and business continuity strategies (BCP/DR).

Key Achievements:

Successfully led multiple GRC implementation projects for multinational organizations, streamlining compliance processes and improving operational efficiency.

Delivered tailored risk and compliance solutions to Forbes-listed companies and high-stakes M&A environments.

Hold advanced certifications (ISO 27001 Lead Auditor, CISA Bootcamp, CISSP Bootcamp) and a Master’s in Cybersecurity, combining regulatory knowledge with technical expertise.

Why Work With Me:

I bring a global perspective, hands-on experience in complex environments, and a proven ability to deliver results on time and on budget. I work flexibly as a freelance consultant or on short- to long-term contracts, supporting organizations in achieving robust compliance, secure operations, and risk-aligned governance.

Experiență

With 8+ years of international experience across EMEA and APAC, I specialize in Governance, Risk, and Compliance (GRC), information security management, and regulatory consulting. I have a proven track record in designing, implementing, and overseeing enterprise-wide security and compliance strategies for multinational organizations and high-stakes environments.

Professional Highlights:

Current Role: GRC Global Manager EMEA/APAC at SS&C Intralinks – leading regional information security teams, ensuring ISO 27001 & GDPR compliance, managing SOC 1 and SOC 2 audits, and supporting secure collaboration in M&A transactions.

Consulting Experience: Conducted gap analyses, designed tailored GRC frameworks, and advised Forbes-listed companies on regulations including NIS2, CPRA, NYDFS, and the EU AI Act.

Key Achievements:

Led multiple GRC implementation projects across multinational organizations.

Managed cross-regional compliance initiatives alongside digital transformation projects.

Implemented robust business continuity (BCP/DR) strategies.

Core Expertise: Enterprise GRC, Information Security, Risk Management, Regulatory Compliance, Audit & Assurance, Digital Transformation Support, Global Program Leadership.