When Governance, Risk, and Compliance (GRC) issues are in the headlines, it’s usually a bad thing. It’s only when a major data breach happens, or a company runs afoul of some regulation, that these important responsibilities get their time in the limelight. GRC & Me is here to shine a light on those individuals tasked with safeguarding their employers’ information and integrity, day in and day out. Tune in every other week as host Megan (Phee) Brown, Director of International Sales at LogicGate, and her guests explore the issues and ideas that give shape to these interconnected functions. Just as GRC touches many parts of a business, so too will the podcast delve into a wide array of concerns—from current events and modern methodologies to cultural nuances and game-changing developments. Join us and learn why GRC is so critical to the future of any organization, where the industry has been—and where it’s going.
Breaking Down Organizational Silos With a Common Risk Language
Getting everyone on the same page about the risks your organization is facing is a crucial part of effectively managing organizational risk. Unfortunately, it’s also one of the hardest parts about effectively managing risk. On this episode of GRC & Me, Dimitrios Stergiou, Director of Information Security at Wayflyer, explains how risk quantification and proper use of standard frameworks can help you build a common language for understanding risk across your organization, break down organizational silos, and get buy-in for your programs.
The Five Layers of a Mature GRC Program
On this episode of GRC & Me, Andy Ruse, LogicGate’s President of Field Operations, sits down with Cooley’s Mike Santos, Director of Security and Information Governance, to discuss his five-layer maturity model for building effective GRC programs, the different things a risk practitioner has to consider in decision making, and his own recommendations for maturing any risk program.
Measurement as a Foundation for Communicating Risk
Properly measuring risk is the most important ingredient in effectively communicating risk, and communicating risk leads to a richer risk culture at your organization. On this episode of GRC & Me, we sat down with OKTA’s Anthony Riley to hear his best practices for measuring and communicating risk.
Building the Business Case for Getting the Right GRC Technology
This episode takes a deep dive into creating a business case for investing in GRC technology by proving its cost-saving impact. LogicGate CEO Matt Kunkel spoke with Michael Rasmussen, a renowned GRC expert, to discuss the past, present, and future of GRC spending. Listen to discover how to build a business case for upgrading to the latest and greatest in GRC.
The Risks We Cannot See
On this episode of GRC & Me, we explore business resilience and the differences between proactive, reactive, and preemptive approaches to crisis management with Howard Mannella, Senior Staff of Global Business Continuity and Security at Udemy. We learn how Howard stays ahead of risks by focusing on their impact and how organizations of all sizes can evolve their GRC programs. Listen to the full episode for valuable insights any business can use to stay resilient.
How to Build a Risk Practice
This episode tackles the essential topic of how to build and mature a risk program aligned with business objectives. Andy Ruse, LogicGate’s president of field operations, recently caught up with James Bundy, practice director at cybersecurity consulting firm Optiv, to explore how businesses across all industries can create a holistic GRC program that contributes to real business growth. How can compliance requirements become business enablers? Listen to find out.
Go-to source for all things GRC 🙌
Love this show - it consistently levels me up and is an invaluable resources for anyone in the GRC space