IT Governance Manager | GRC Engineer | Risk & Compliance Strategist
I build governance systems that organizations actually use.
From change management to enterprise risk programs and audit readiness, I design frameworks that bring structure, visibility, and control without slowing teams down. My work sits at the intersection of engineering and leadership, translating standards like ISO 27001, SOC 2, NIST, and COBIT into practical workflows, controls, and reporting that drive real decisions.
With a background in Computer Science and an MBA in IT Management, I focus on governance that is scalable, enforceable, and built for real-world environments.
A structured governance model for evaluating, documenting, and approving risk acceptance decisions. Designed to improve executive visibility, consistency, and audit defensibility across enterprise environments.
A practical audit toolkit for assessing security controls, identifying gaps, and strengthening compliance posture. Built to support SOC 2, ISO 27001, and internal audit programs.
These projects reflect how governance works in real environments, not just on paper.
πΉ GRC Explained
I built GRC Explained to help professionals break into Governance, Risk, and Compliance through hands-on experience.
The platform focuses on real-world execution, not just theory:
- Interactive GRC scenarios and simulations
- Resume-ready projects and artifacts
- Interview preparation and mock scenarios
- Structured learning across frameworks (ISO 27001, NIST, SOC 2, HIPAA)
This is where I translate enterprise governance into practical training.
I host Cyber Risk, Explained, where I break down cybersecurity, governance, and risk into practical insights.
π§ Listen on Spotify:
https://open.spotify.com/show/7AIAsUyqZ4JRWI261wpH1e
I publish Governance, Explained, focused on real-world GRC implementation, governance strategy, and career growth.
π Subscribe:
https://www.linkedin.com/build-relation/newsletter-follow?entityUrn=7411889194886881280
- Hashnode: https://neviarrawlinson.hashnode.dev/
- Medium: https://medium.com/@neviarrawlinson
- LinkedIn: https://www.linkedin.com/in/neviarr/
My content focuses on how governance actually works inside organizations.
- IT Governance & Control Design
- Enterprise Risk Management
- Internal Audit & Compliance
- Change Management & CAB Governance
- SOC 2, ISO 27001, NIST Alignment
- Cloud & SaaS Governance
- GRC Career Development
- MBA, IT Management
- B.S. Computer Science
- Certified ScrumMaster (CSM)
- Certified Scrum Product Owner (CSPO)
- Coffee enthusiast
- Anime fan
- Dog mom
- Podcast host
- Lifelong learner
If youβre building governance programs, improving compliance, or breaking into GRC, feel free to connect.
Explore my work, follow my content, or reach out through the links above.