Welcome to my GitHub! I am an IT professional blending a decade of IT Internal/External Audit experience with Software Development and Security Engineering. On this profile, you'll find my open-source work focused on Audit Engineering, Compliance-as-Code, and modern GRC Automation.

Instead of relying solely on manual checklists, I leverage code and modern architecture to audit cloud environments, build compliance automations, and manage risk:

• AI & Automation: Python, CrewAI, LangGraph, AWS MCP (Model Context Protocol), Claude Code, Streamlit
• Audit Engineering & SDLC: Docker, uv, Pytest-BDD, GitHub Actions, Account ID Redaction
• Cloud & Infrastructure: AWS (Restricted Audit Context), GCP, Linux
• GRC Frameworks: Secure Controls Framework (SCF), ISO 27001, NIST, PCI-DSS, SOX, COBIT

For a comprehensive breakdown of my 10+ years of professional experience (leading audits at Nubank, Mercado Livre, Stone, and PwC) and to see exactly what I am currently building at the intersection of GRC and AI:

👉 Explore my full Career History, Publications, and Case Studies here

"I believe governance and security go beyond compliance — they represent clarity, accountability, and trust. My goal is to help organizations evolve responsibly, building secure and transparent digital environments."