SOS8 - Building a Resilient GRC Program (with Rick Leib & Susan Woyton)

EXPLORE

Society & Culture

Health & Fitness

© 2024 PodJoint

https://is1-ssl.mzstatic.com/image/thumb/Podcasts221/v4/72/ff/d0/72ffd05c-54b6-2bac-b655-117bd646d754/mza_16596518184016210249.jpg/600x600bb.jpg

State of Security: Expert Insights on Cybersecurity Operations and the Business of Cyber

Access Point Consulting

28 episodes

5 days ago

State of Security, by Access Point Consulting, brings together seasoned experts in the fields of security consulting, regulatory compliance, and security operations. Whether you’re a business leader, IT professional, or security enthusiast, this podcast offers valuable insights and actionable advice.

Learn more at accesspointconsulting.com.

Show more...

All content for State of Security: Expert Insights on Cybersecurity Operations and the Business of Cyber is the property of Access Point Consulting and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

State of Security, by Access Point Consulting, brings together seasoned experts in the fields of security consulting, regulatory compliance, and security operations. Whether you’re a business leader, IT professional, or security enthusiast, this podcast offers valuable insights and actionable advice.

Learn more at accesspointconsulting.com.

Show more...

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_nologo/42326551/c0fbf4049ae8f29c.jpg

SOS8 - Building a Resilient GRC Program (with Rick Leib & Susan Woyton)

State of Security: Expert Insights on Cybersecurity Operations and the Business of Cyber

36 minutes 51 seconds

1 year ago

SOS8 - Building a Resilient GRC Program (with Rick Leib & Susan Woyton)

Summary

This episode focuses on governance, risk, and compliance (GRC) and how organizations can strengthen their GRC programs.

Key recommendations include:

Ensure executive buy-in and support for GRC initiatives.
Review and update policies, procedures, and documentation regularly.
Implement continuous monitoring and improvement of GRC processes.
Incorporate GRC elements into contracts with third parties.
Conduct regular internal and third-party risk assessments.
Provide security awareness training to employees.
Consider the impact of AI on GRC, but maintain a human element in the process.

Chapters

00:00 Introduction

03:21 The Importance of Resilient GRC

08:33 Challenges and Failures in GRC

25:58 Executive Buy-In and Documentation

30:38 Continuous Monitoring and Improvement

35:24 Strengthening GRC Programs