Peer-Driven Insights

Security & GRC

About this topic

Security and GRC refer to the practices and frameworks that protect information assets and ensure organizational alignment with regulatory and risk requirements, respectively. Information security safeguards digital and physical systems from unauthorized access and threats, while governance, risk, and compliance (GRC) guide strategic decision-making and regulatory adherence.

Featured One-Minute Insights

Sept 2024

How are U.S. CISOs Addressing Liability Risk?

New regulations taking effect in the U.S. mean that cybersecurity leaders could face legal liability in the event of an incident. What strategies are they using to protect themselves?

Security & GRC

About this topic

Featured One-Minute Insights

How are U.S. CISOs Addressing Liability Risk?

Community Posts

Community Posts

What (if anything!) makes you feel optimistic for the future of cybersec?

Why do you think there are so few mature AI-driven autonomous pentesting solutions on the market, and why does this topic seem to generate more hype than in-depth technical discussion?

With AI adoption accelerating across enterprises, what do you view as the top information security challenge that leaders should address? How can CISOs, VPs and Director’s align governance, risk and security investments to enable AI innovation without creating new exposures?

What Cisco cybersecurity courses would you recommend?

What can a CISO do if their authority is unequal to that of other C-suite execs (apart from the CEO)?

What was the first computer you ever got to work on?

Whats the biggest IT trend you want to learn more about?

What do you think the CMMC (Cybersecurity Maturity Model Certification) will actually address?

Have you ever "whitewashed" a real security risk?

What are your preferred sources for threat intelligence?

Anyone able to provide feedback on what AV endpoint protection you are using or have recently evaluated/completed a PoC?

What can you do to maintain security in a large enterprise when your cyber budget is shrinking?

Who decides how much security risk to take for a specific system?

SIEM Vendors - Have you used or evaluated?

Does anyone have an opinion or review on Dome9 vs. Evident.IO for visibility and security in AWS?

How often do you do phishing campaigns?