Mr. José Carrera, International Governance, Risk & Compliance (GRC) Thought Leader and Cybersecurity Strategist, United Arab Emirates

Jose Carrera – International Governance, Risk & Compliance (GRC) Thought Leader and Cybersecurity Strategist

Jose Carrera is a high-impact international expert in Governance, Risk, and Compliance (GRC), with a distinguished track record of delivering results-driven consulting and training services across the United Stated, Europe, MENA, UAE and beyond. He specializes in Cybersecurity and Information Security advisory, providing strategic consulting and high-level training to mission-critical government agencies and key players in the private sector.

With deep-rooted expertise as a Chief Audit Executive, Jose brings over two decades of international experience in internal auditing, risk management, process improvement, forensic accounting, and information technology. His leadership spans executive-level roles where he has designed and implemented enterprise-wide frameworks to strengthen organizational resilience and regulatory compliance.

Jose has led numerous Annual Enterprise Risk Assessments and is highly skilled in overseeing and reporting on risk management programs to Boards of Directors, Executive Leadership, and Audit Committees. He is recognized for his ability to translate complex risk and control concepts into actionable insights that drive strategic value and operational excellence.

He possesses comprehensive knowledge of global and regional regulatory and compliance frameworks, including:

UAE Information Assurance Standards

ISO/IEC 27001 & 27002 (Information Security Management Systems)

Federal Acquisition Regulations (FAR)

Cost Accounting Standards (CAS)

United States GAAP & GAAS

Financial Accounting Standards Board (FASB)

International Financial Reporting Standards (IFRS)

Jose’s unique combination of technical knowledge, regulatory insight, and strategic foresight positions him as a trusted advisor to high-level decision-makers across critical infrastructure sectors. He continues to champion capacity-building efforts by shaping cybersecurity and GRC curriculum frameworks for governmental training initiatives and executive leadership development programs.