ENFTC Logo
Technology Risk & AI Governance

AI-Driven Regulatory Compliance
& Technology Risk Architecture.

Specialized consultancy for Tier-1 Financial Institutions. Delivering AI-driven DORA compliance, operational resilience, and audit defense strategies.

View Executive Profile View Interactive CV
🚀 NOW BUILDING (2026)
LLM-Enhanced Compliance Automation: Developing a fully automated, AI-driven regulatory compliance capability for financial services — integrating RAG-model policy mapping with continuous control monitoring.
40% Audit Cost Reduction (UBS)
25+ Years Financial Services Exp
100% Major Audit Success Rate
85% DORA Compliance Automation
Emre Tuncoglu

Emre Tuncoglu

Principal Consultant & Director

CRISC CISSP TOGAF 9.1 CISA CISM ISO 27001 LA PRINCE2

A Senior Technology Risk & Security Executive with a 25-year tenure in the Financial Services industry. Emre specializes in leading AI transformations in risk management and navigating the intersection of technical infrastructure and regulatory frameworks (DORA, GDPR, FCA/PRA).

From architecting RAG-model solutions for policy automation to steering multi-skilled teams through regulatory audits, Emre provides hands-on expertise for complex remediation and resilience strategies. He has successfully led remediation programs for global institutions including UBS, Lloyds Banking Group, Deloitte, and Capital.com.

View Full Resume →

"Emre supported our Internal audit team as a subject matter expert in delivering IT audits during my previous role. Emre is highly technical, has a sound knowledge in Mainframe and associated security architecture reviews, where it is scarce to find those expertise these days. He highlighted some key control gaps to management during the mainframe and database audits. He was good at articulating technical and complex issues in a simple business language which helped senior management to effectively understand the business risks and impact."

— Arun Subramanian, Director, Information Security Risk and Controls

Read all recommendations →

Core Competencies

Bridging the gap between C-Suite strategic risk requirements and technical implementation.

🤖

AI & LLM Governance

Architecting RAG-model solutions using Large Context Window LLMs for automated policy uplift. Ensuring safe AI adoption aligned with EU AI Act.

⚖️

Regulatory Remediation

Expert handling of DORA, GDPR, BCBS 239, and HKMA/MAS TRM requirements. Specializing in lifting regulatory restrictions and closing audit findings.

☁️

Cloud Security Architecture

Security design for Azure & GCP migrations. Implementing DevSecOps pipelines and "Compliance-as-Code" controls for automated validation.

🔍

Compliance Automation & AI

Building fully automated, LLM-enhanced regulatory compliance capabilities — integrating AI-driven policy mapping with continuous control monitoring for financial services.

Trusted by Leading Institutions

UBS Lloyds Banking Group Deloitte Capital.com Aviva Euroclear KPMG