In this episode of Resilient Cyber, I sat down with Kayne McGladrey, CISO in Residence at Hyperproof, to discuss using GRC maturity models to drive progress, as well as the broader GRC modernization efforts underway across the industry.
Interested in sponsoring an issue of Resilient Cyber?
This includes reaching over 40,000 subscribers, ranging from Developers, Engineers, Architects, CISO’s/Security Leaders and Business Executives
Reach out below!
The GRC industry ecosystem has a lot of challenges and opportunities, and Kayne and I got into them, including:
The momentum to modernize GRC, including trends such as GRC Engineering and why we’re seeing this push.
The challenging landscape for GRC practitioners, including the never-ending list of frameworks to keep up with, needing to crosswalk, rationalize, and meet all of them concurrently.
Hyperproof’s Compliance Maturity Spectrum, which allows organizations to self-assess where they are on their compliance journey, from minimal through strategic, and what that looks like from a people, process, and technology perspective
How organizations are starting to see compliance as a key consideration among buyers, business partners, and customers.
The dichotomies between the U.S. and EU when it comes to regulation and compliance, and the challenges businesses and vendors face when trying to navigate the different markets, even among specific states here in the U.S.
The importance of modern GRC platforms that are API-centric, can support integrations, cloud-native services, automation, and moving away from static, snapshot-in-time assessments, paper-based compliance, and legacy assessment methodologies.
