Governance, Risk, and Compliance

GRC Overview

In this lesson, we’ll be outlining the basic course structure and discussing the prerequisites that you should possess before taking the course.

Introduction to Governance, Risk, and Compliance

During this lesson, we will lay the groundwork for the rest of the course by developing a definition for Security GRC and briefly introducing how GRC roles function today.

Governance

This lesson focuses on the role of security governance. This is what puts the “G” in GRC.

Risk

In this lesson we’ll learn how risk management has evolved over time into today’s security risk management practice and explore some of the tools risk managers use.

Compliance

Compliance deals with a relatively structured approach to ensuring organizations meet their obligations to security standards through their security controls and practices.

Audit Management

The lesson focuses on ensuring that audits go smoothly by developing an understanding of audit management fundamentals and how GRC professionals should plan for and remediate audit results.

Project: SwiftTech Report

Apply the skills you have acquired to analyze data provided about a fictional technology company and create fundamental components of the company’s GRC program.