About

Hazel Castro

ISO 27001 Internal Auditor

Hazel Castro is a certified ISO 27001 Internal Auditor with over 14 years of experience in information security compliance and auditing. She has completed more than 100 internal audits across startups, mid-market companies, and enterprise organizations.

Her approach focuses on practical, actionable findings rather than checkbox compliance. Every audit report includes specific corrective action recommendations that organizations can implement immediately to improve their security posture and prepare for certification.

Hazel specializes in working with startups and growing companies that are pursuing ISO 27001 certification for the first time. She understands the unique challenges small teams face and tailors her audit approach accordingly.

Certifications

ISO 27001 Internal AuditorISO 27701 Privacy Lead ImplementerISC2 Certified in Cybersecurity (CC)Certified Public Accountant (CPA)

Areas of Expertise

ISO 27001:2022 internal audits and gap assessments
ISO 27701 privacy management system reviews
SOC 2 readiness assessments and control mapping
ISMS implementation guidance for startups
Risk assessment methodology and execution
Evidence collection and audit preparation

Book an Audit on Upwork