20 Years of GRC: What Have we Learned? What is Next? - Michael

20 Years of GRC: What Have we Learned? What is Next? - Michael Rasmussen - CSP #117

Listen now

Description

Ensuring organizations have the proper governance, risk and compliance (GRC) practices is essential to ensuring risks are appropriately mitigated. Join us as we discuss the interconnectedness of risk, the process of GRC , and Michael’s thoughts on how to improve the process. Visit https://securityweekly.com/csp for all the latest episodes! Follow us on Twitter: https://www.twitter.com/cyberleaders Follow us on LinkedIn: https://www.linkedin.com/company/cybersecuritycollaborative/ Show Notes: https://securityweekly.com/csp117

More Episodes

See all »

CISO Stories Podcast (Audio)

Published 05/07/24

Why CISO’s Fail: Some Practical Lessons for the Future - Barak Engel - CSP #173

Security is both overcooked and underdeveloped at the same time, and we keep doubling down on insanity. Our own community is at great fault for pushing fear and ignoring service, leading to consistent, negative experiences for all other stakeholders in the organization - and ultimately the CISOs...

Published 05/07/24

Air Gapped! The Myth of Securing OT - Thomas Johnson - CSP #172

The terminology of ICS has morphed into OT (Operational Technology) security; however many organizations are lacking in addressing the OT security controls. As some companies talk about air gapping as the primary method of securing OT, the reality is many times true air gapping does not exist....

Published 04/30/24