Tristan Roth is an ISO/IEC 27001 consultant and Lead Auditor specializing in helping companies and startups design, implement, and certify effective Information Security Management Systems (ISMS). He supports organizations throughout their certification journeys, including providing outsourced internal audits and pragmatic guidance that aligns security controls with real business operations.
Tristan is also the creator of ISMS Copilot, an AI-powered assistant designed for GRC consulting firms and certification bodies, enabling more efficient ISMS implementation, audit preparation, and compliance management. His work sits at the intersection of security governance, automation, and applied AI.
Previously, Tristan served as ISMS Manager at Kantox, where he built the ISMS and enterprise risk management program from the ground up. Earlier in his career at BNP Paribas Personal Finance, he contributed to supplier security audits, risk mapping, key risk indicators, and the deployment of GRC platforms such as ServiceNow. These experiences give him a deep understanding of both startup and large-enterprise security environments.
As a webinar speaker, Tristan brings a practical, auditor-informed perspective on ISO 27001, risk management, and GRC transformation—helping organizations move beyond checkbox compliance to build sustainable, value-driven information security programs.
