Let’s Talk GRC & Security!
Here’s where we highlight creative things going on in the GRC and Security communities. We share insightful news and cutting edge theories about the current and future state of technology Security and Governance, Risk, and Compliance and its place at large and small clients across industries. Read about our experiences here. Please feel free to contact us to contribute to the conversation.
CMMC – Critical Information and Preparedness – A Summary
CMMC is an important requirement looming on the horizon that will impact all federal contracting organizations and the way they do business. It is important to note that the exact requirements companies adhere to have NOT been set. Be wary of anyone telling you that...
A GRC Holiday
GRC in 2019 has focused on the debate of Integrated Risk Management (“IRM”) versus Governance Risk Compliance (“GRC”), one claiming to be the future of risk management, the other stating it is same technologies, just new terminology. At their core, GRC/IRM technology...
Selecting the Best GRC Solution for Your Organization
Governance, Risk and Compliance solutions have evolved greatly over the last 10 years, and there are multiple vendors in the market - from smaller pay-by-user model cloud solutions to enterprise-wide multi-server installed solutions and every variation in between. How...
Recap from RSA Charge 2019
RSA Charge made for great week of speakers, networking, and evening fun at RSA’s annual event this past week at Disney in Orlando, Florida. We recap key themes and trends from the conference.
Two lessons from the 2019 Rocky Mountain Information Security Conference (RMISC).
Each year I embark on a journey with what seems like every other security professional in the Denver area, to the only Security conference that seems worthwhile to attend: The Rocky Mountain Information Security Conference (RMISC). For a city the size of Denver that...
The GRC Technology Hiring Gap
I get at least one message a week that goes something like, “Hi Andrew, I came across your profile on LinkedIn and was quite impressed with your background and experience, specifically in RSA Archer. I am looking to fill a few Archer...