Andrew Roberts has been serving as the Director, IT Compliance & Risk Management at Grand Canyon University since March, 2009. During his tenure, he has established both the IT Security and IT Compliance functions and continuously expanded and improved the University’s cybersecurity capabilities to keep pace with rapidly growing student, faculty, and staff populations. From 2004 to 2009 he provided risk management, internal control, regulatory compliance, and corporate governance consulting services to clients in the Education, Government, Travel, Financial Services, Healthcare, and Manufacturing sectors. Prior to his consulting work, Mr. Roberts founded and directed the internal audit function for a large regional furniture retailer and has served as both an Internal Auditor and an IT Auditor for clients in a dozen nations worldwide. Mr. Roberts is a Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), and is Certified in Risk and Information Systems Control (CRISC) by the Information Systems Audit and Control Association (IASCA).