Ryan A. Gregg
GRC Governance Lead · Risk Automation & Intelligence · NYC
Summary
I am a risk architect and automation specialist dedicated to transforming manual compliance burdens into streamlined, data-driven governance ecosystems. Over the last decade, I have pioneered the transition from legacy risk management to modern, automated stacks for global leaders like NBCUniversal and Edward Jones. My approach centers on the 'Risk Intelligence' model: I don't just implement tools; I build integrated pipelines—linking GRC platforms like LogicGate to Snowflake and Tableau—to provide real-time visibility into enterprise health. I have a proven track record of reducing assessment cycle times by 30% and eliminating 40% of manual effort in third-party risk workflows. Beyond operational efficiency, I specialize in policy architecture for emerging technologies, including the development of governance frameworks for AI-enabled solutions and NIST CSF alignment. If you are looking for a leader who can bridge the gap between high-level regulatory strategy and technical data engineering to scale a GRC function in a fast-paced environment, I offer the expertise to build that foundation. I am currently focused on bringing this blend of GRC automation and risk analytics to the high-growth Fintech sector.
"I don't just implement tools; I build integrated pipelines that transform manual compliance burdens into streamlined, data-driven governance ecosystems with real-time visibility."
Expertise
Case study
Automating GRC Data Pipelines for Global Enterprises
To modernize legacy risk management at scale, I pioneered a 'Risk Intelligence' model by integrating GRC platforms like LogicGate directly with Snowflake and Tableau. This architecture replaced static reporting with dynamic, real-time dashboards for Key Risk Indicators (KRIs). By engineering automated workflows for Third-Party Risk Management (TPRM) and Control Certifications, I successfully reduced assessment cycle times by 30% and eliminated 40% of manual effort across the risk function. These pipelines provided leadership with immediate visibility into enterprise health while ensuring rigorous alignment with NIST CSF and ISO 27001 standards, proving that technical data engineering is the most effective lever for scaling global GRC functions.
Experience
Product Lead / Founder
09/2025 – Present
RyzaLab · Remote (NYC)
- • Managed product backlog across 4 entity types (leads, customers, properties, device inventory), prioritizing features in weekly sprints; increased lead-to-consult conversion from 35% to 45% and cut implementation cycle time 33% over 12 weeks.
- • Used GitHub Copilot, Claude Code, and Cursor to automate deployment configurations, reducing manual rework 25% and shipping weekly across 8 deployments with zero production regressions over 14 consecutive releases.
- • Designed voice-to-text transcription workflows to convert field technician notes into structured reports, saving 3+ hours/week of manual documentation per operator.
- • Defined acceptance criteria and ran UAT for every release using QA checklists and GitHub-based version control; maintained 95%+ data fidelity across 120 devices.
- • Standardized the operating stack (Notion, Cursor, Copilot, Tableau/Power BI) and wrote 2 onboarding modules, reducing ramp-up from 3 weeks to 3 days for new team members.
Senior GRC Risk Manager – Product Owner
12/2022 – 08/2025
Edward Jones · Remote (NYC)
Led GRC governance operating model across Controls, Risk ID, Policy Management, and TPRM for the Chief Risk Officer team.
- • Led LogicGate roadmap and implementation across Controls, Risk ID & Assessment, Policy Management, TPRM, and Issue Management; translated Legal, Compliance, Risk, Security, and business needs into requirements, epics, user stories, workflow designs, UAT plans, and adoption support across 12 business units and 170+ stakeholders.
- • Evaluated ServiceNow GRC and Archer against LogicGate, assessing architecture complexity, cloud integration capabilities, and fit for lean-team operations. Selected and implemented LogicGate; reduced cycle time 30%.
- • Architected GRC-to-Snowflake-to-Tableau reporting ecosystem supporting regulatory and compliance reporting: defined data dictionary with 50+ metrics aligned to NIST CSF, automated DQ checks, and delivered self-service dashboards improving data quality 23%.
- • Built TPRM module by partnering with Third-Party Risk leads to design assessment workflows incorporating security questionnaires and privacy impact screening - cutting manual effort 40% while ensuring consistent coverage across critical vendors. Drafted risk governance policy; contributed to 6 ERM policies.
- • Evaluated ServiceNow GRC and Archer against LogicGate, assessing architecture complexity, workflow flexibility, integration capabilities, and fit for lean-team operations; documented configuration decisions, change logs, and implementation requirements to support scalable delivery. Reduced cycle time 30%.
Manager, GRC Operations & Risk Intelligence
04/2017 – 12/2022
NBCUniversal · New York, NY
Led migration from Archer to LogicGate and established modern GRC foundations.
- • Led cross-functional team through Archer-to-LogicGate migration and expanded LogicGate use cases across Risk, Issue Management, Audit, and Controls; partnered with Legal on MSA/SOW review and vendor negotiation support, translating stakeholder requirements into workflows, UAT plans, reporting requirements, and adoption roadmap.
- • Built Snowflake-enriched analytics layer combining GRC and Security Incident data for trend analysis, executive reporting, and data-quality improvement; cut reporting cycle time 25%, eliminated 20% of redundant metrics, and increased LogicGate adoption from 30% to 70% over 18 months.
- • Increased GRC adoption from 30% to 70% over 18 months by leading bi-weekly training sessions and monthly governance forums. Integrated LogicGate with Snowflake, cutting reporting cycle time 25%.
Program Manager
08/2013 – 04/2017
Sustainable Performance Consulting · New York, NY
Managed project delivery and client retention through data-driven reporting.
- • Lifted client retention 8% YoY by implementing KPI dashboards and conducting monthly executive reviews tying project delivery to financial outcomes.
Education
- Fordham University · M.S., Business Analytics · 2016
- Texas Tech University · B.S., Mechanical Engineering · 2007
What I'm looking for
notes: Seeking remote opportunities within the Fintech sector to leverage GRC automation and risk intelligence expertise. work mode: Remote industries: Fintech role types: GRC Leadership, Risk Operations, Governance Automation
Ideal next role
GRC Governance Lead or Head of Risk Automation in a high-growth Fintech environment, focusing on building scalable risk data models and AI governance frameworks.
Not a fit for
I am not the right choice for organizations looking for a traditional 'checklist' auditor or those who prefer maintaining manual, spreadsheet-based risk processes without an appetite for automation.
Logistics
- Languages
- English
FAQ
How does Ryan approach GRC tool implementation?
Ryan treats GRC as a data engineering challenge, specializing in linking platforms like LogicGate to Snowflake and Tableau to create automated, real-time risk intelligence pipelines.
What measurable impact has Ryan delivered in risk operations?
He has a proven track record of reducing risk assessment cycle times by 30% and cutting manual effort in third-party risk workflows by 40% through automation.
Does Ryan have experience with emerging technology risks?
Yes, he specializes in policy architecture for new tech, including developing governance frameworks for AI-enabled solutions and aligning them with NIST CSF.
What is Ryan's technical proficiency regarding risk analytics?
He is highly proficient in SQL for risk analytics, KRI dashboard engineering, and building integrated data models that bridge the gap between regulatory strategy and technical execution.