The beginning of a new journey, this space is designed to create a community of Cybersecurity Governance, Risk and Compliance (GRC) practitioners that want to connect with others in the profession, bounce ideas with each other, share new concepts or simply learn about this industry. Everybody is welcome to contribute by sharing, respectfully & courteously, their own approaches to solve the same problems we all share, what is Cybersecurity GRC? What’s the purpose it serves? What’s the value to the business? How should we structure a GRC function within an organization? What is the difference between and risk and an issue? What is a control? what tools are out there to support our programs?
Join me in this journey and let’s contribute together to the betterment of the Cybersecurity GRC profession.
Basic rules:
- Everybody’s ideas and concepts are welcome
- Treat each other with respect and an open mind
- Concepts I share on this blog are mine, they do not reflect the policy or are related to my employer (please do the same)
Want to join the ride:
Cybersecurity Governance, Risk and Compliance 
Leave a comment