Gerardo Valderrama
ISO 27001 Lead Auditor · ISO 42001 Provisional Auditor · AI Governance
I'm a GRC auditor specializing in ISO/IEC 27001, 27701, and 42001, with a two-year audit footprint across 12+ countries on five continents. In 2025 I was named Auditor of the Year by the Insight Assurance ISO Audit Team. I also co-founded Iniciativa Grow, a Panama-focused GRC implementation practice.
Audit & AI governance
My work centers on information security and AI governance audits (readiness, Stage 1, Stage 2, and surveillance) for clients in Australia, France, Germany, Norway, and the United States. I'm among the early cohort of professionals dual-credentialed by PECB for ISO 27001 and ISO 42001, and I write about AI governance as it reaches Latin America.
Iniciativa Grow
Iniciativa Grow is a Panama-focused practice where I lead ISO 27001 and ISO 42001 readiness work for small and mid-sized organizations.
Grow does not perform certification audits — readiness and implementation only.