Governance, system reality, and evidence

My work traces governance through
system reality and evidence.

This means tracing governance through systems, controls, implementation, and user reality, with evidence where it counts.

Current focus: technical GRC, system reality, and evidence-led assurance

View Proof of Work Explore CRA Labs

10+

Years across audit, risk, product, and delivery

Current market focus

GRC

Methodological foundation

CRA

Flagship proof-of-work lens

Thesis

Governance is moving closer to systems, pipelines, and evidence.

My working premise is simple: governance is no longer a reporting layer added at the end. It must be traceable through systems, code, controls, decisions, and evidence.

How I work

Three connected lenses guide how I evaluate systems.

This is the working sequence: trace governance into systems, controls, and implementation, then test whether the evidence holds up.

Governance

I work on accountability, traceability, control design, and how regulatory expectations become operational.

System reality

I am moving closer to source code, pipelines, configuration, runtime behavior, and technical controls, rather than staying only at the policy layer.

Evidence

I care about proof of work that makes the logic visible through investigations, artifacts, and structured communication.

Flagship work

CRA Labs is my flagship proof-of-work project.

I am building a working body of proof that tests how governance claims map to system reality.

The structure is simple: 12 requirements, 6 pillars, 30 investigations, and GitHub-visible evidence.

For now, the GitHub repo is the best place to follow the work as it develops.

View CRA Labs repo

Open to

Roles, conversations, and collaboration.

Open to contract, interim, and permanent work across three lanes.

Based in AmsterdamFull working rights in the Netherlands

Technical governance and assurance

Work that tests whether governance and control claims hold up in real systems.

Product, compliance, and evidence

Work that connects regulation, implementation, and business decisions across technical and compliance teams.

Client-facing technical advisory

Work that parses systems, identifies which regulations and controls matter, and turns that into clear assurance questions and evidence needs.

Likely fit across technical GRC, IT audit, product compliance, controls assurance, and advisory work in regulated environments.

Working in English, with Dutch at A2 and improving.

Connect on LinkedIn

My work traces governance throughsystem reality and evidence.