Andy Kerr is a cybersecurity and governance leader with over 25 years experience specializing in  risk, compliance, and enterprise control design. With extensive experience in PCI DSS, audit readiness, and security program development, Andy bridges the gap between technical architecture and regulatory oversight. He focuses on engineering governance directly into systems from controlled data ingestion and retrieval architectures to agent oversight and lifecycle monitoring aligning implementations with frameworks such as NIST AI RMF, ISO/IEC 42001, and CSA AI Controls. Andy is currently working on  the intersection of security, data platforms, and emerging AI technologies, helping organizations build intelligent systems that are secure, explainable, and audit-ready. He is passionate about translating complex AI architectures into practical governance strategies that executives, engineers, and auditors can trust.