CISO Stories is a monthly program featuring a series of content powered by the 1,200+ members
of CyberRisk Alliance’s CISO Community. Each month, CISO Stories features a topic selected by
CyberRisk Alliance’s CISO Community and will feature four weeks of content that explores the
topic from a variety of perspectives and in a variety of different formats published here.
Governance, Risk and Compliance Resources
Webcasts
Governance, Risk, and Compliance: The CISO perspective
During this month of CISO Stories, practitioners will share their experiences and challenges with implementing a GRC framework, including developing appropriate policies and controls, establishing…
CISO Insights: Navigating the GRC Landscape
A robust GRC program fosters the ability to manage key risks and protect sensitive data, aligning security initiatives with…
Resources
How to Build a Mature GRC Program from the Ground Up
This document aims to help organizations, regardless of size, industry, or maturity level in building or benchmarking their GRC functions.
Top 5 indicators of an effective GRC program
There are five crucial ingredients to an effective GRC program. This infographic spells it out.
Building a mature (and effective) GRC program: A checklist
This checklist will help compliance teams mature and perfect their GRC programs.
First 5 steps on your GRC journey
This guidance from the CyberRisk Collaborative GRC Task Force will help security and compliance teams build a GRC program that covers all the critical bases.
CISO STORIES PODCASTVIEW PAST EPISODES
Governance, Risk and Compliance
Driving the Business of Infosec Through the GRC Program – Greg Bee – CSP #185
Evolving from Security to Trust, more than Just Compliance – Mike Towers – CSP #184
CISO Risk Reduction: Adopting Emerging Technologies – Timothy McKnight – CSP #183
Deep Dive in GRC: Know Your Sources – Jonathan Ruf – CSP #182
Governance, Risk and Compliance
Governing Cyber Humanely: Leveraging Wellness Techniques – Jothi Dugar – CSP #181
