#GRC

2025-10-18

@vk6flab Solar flux measurement/monitoring with an ADALM Pluto SDR. Sounds like a fun project. Learning ahead! Thanks for sharing & 73.
#SolarFlux #PlutoSDR #GRC

Would anyone be interested in learning more about my work as a cybersecurity awareness content creator and educator? It’s an interesting career path and niche worth considering, especially if you have an interest in security culture or GRC. #cybersecurity #grc #infosec

GRC – what it is, and where it came from.

Playing the Old Guy card is dangerous for me, because people may assume incorrectly that I have a “been there, done that” attitude. And you just can’t have a “been there, done that” attitude in technology, because things change so fast. Each problem must be treated as a new problem, and solved – again – today, in light of today’s technology.

However.

I’m going to play the Old Guy card today, talking about GRC. Are you ready?

GRC is a buzzword.

However cool you may think Governance, Risk, and Compliance is, the name/acronym is a newcomer on an old field. The Open Compliance and Ethics Group (OCEG) formally defined the term GRC in 2007. (Source: the Internet. Google it. You can find it at the OCEG website, Wikipedia, and on and on).

My friend, we were doing things like change management, risk management, and legal compliance way back in the last century.

The first time (several years ago) a prospect asked me, “Do you have any experience with GRC?” I asked them, “What’s GRC? I haven’t heard that acronym.” Of course, they assumed I was ignorant, and hired someone else.

Hey. We had a whole compliance group in our legal department at Cellular One when I was Director of National System Development in 2000. We had things like product evaluation, change management, and coordination of objectives between Sales and Engineering when I was Director of Technical Services at one of America’s largest paging companies in the 1990s.

If you think GRC means finding controls to satisfy a framework, or meeting NIST standards, or achieving CMMC compliance, your thinking is too small.

GRC existed before the acronym was created.
GRC exists outside of cybersecurity.
Cybersecurity is just one part, a new addition, to the scope of a company’s unified governance, risk management, and legal compliance initiatives.

See things in perspective. Look for the bigger picture.

#CMMC #GRC #NIST

bsidesnovabsidesnova
2025-10-09

Job seekers of Northern Virginia 📣 lend us your eyeballs 😃 Our 2025 conference will be amazing. Our CAREER VILLAGE will have this and more!

📸 Professional Headshots
🧐 Resume Reviews & Mock Interviews
🗣️ Career Talks & Strategy Sessions
🤗 Sponsor Engagement

Brian Greenberg :verified:brian_greenberg@infosec.exchange
2025-10-08

ICE is quietly reentering the commercial surveillance market. After saying it had stopped buying phone location data, new documents show the agency is purchasing access to Penlink’s “Tangles” and “Webloc” — tools that ingest billions of location signals daily from hundreds of millions of devices. This is near real-time movement patterns of people in the U.S., scraped from apps and ad exchanges. ICE calls it an “integral part” of its mission — even after the DHS inspector general found the agency broke the law using similar data without warrants. 🤬 The pattern’s familiar: pause, audit, resume. But each time the privacy stakes climb higher and the accountability weaker. 😢

TL;DR
📱 ICE buying daily phone location feeds
⚙️ Data sourced via SDKs + ad networks
🧾 Reverses prior policy after legal violations
⚠️ Expands surveillance with minimal oversight

404media.co/ice-to-buy-tool-th

#Privacy #Surveillance #CivilLiberties #GovTech #security #cloud #infosec #cybersecurity #GRC

Brian Greenberg :verified:brian_greenberg@infosec.exchange
2025-10-08

When your AI "assistant" fabricates citations and invents court quotes, that’s not innovation, that’s negligence. Unbelievable, 🤦🏻‍♂️ Deloitte’s $290K report for the Australian government used generative AI (Azure OpenAI), and hallucinated fake sources and misattributed legal commentary. A researcher caught it and Deloitte admitted 'some' references were wrong, and now they’re refunding part of the fee. 😬

This is the growing pain of AI adoption: big firms racing ahead without the governance to match. Transparency after the fact doesn’t rebuild trust — it just highlights the gap between capability and accountability.

TL;DR
⚠️ AI-generated report errors
📚 Fake citations discovered
💸 Partial refund to the government
🤖 Big Four still chasing AI efficiency

fortune.com/2025/10/07/deloitt

#AIethics #Consulting #Deloitte #Governance #GRC #security #privacy #cloud #infosec #cybersecurity

CognitoConsultantscognitoconsultants
2025-10-08

GRC tools empower providers to stay compliant and reduce risks. Ready to strengthen your systems?

cognito
Playing Gamespg@jforo.com
2025-10-08

英語Podcast新エピソード:小島秀夫とゲームデザインの芸術(国際学術院・ハーツハイム ブライアン ヒカリ 准教授) – Global Research Center (GRC) 早稲田大学 研究活動 playing-games.com/825361/ #Game #GameNews #GamingNews #GRC #WasedaUniversity #グローバルリサーチセンター #ゲーム #ゲーム最新情報 #ワセダ #国際 #教育 #早大 #早稲田大学 #研究

英語Podcast新エピソード:小島秀夫とゲームデザインの芸術(国際学術院・ハーツハイム ブライアン ヒカリ 准教授) – Global Research Center (GRC) 早稲田大学 研究活動
2025-10-03

🔍 Web Malware Scan Results

Website: t.co
Security Verdict: MEDIUM RISK

Full analysis & details:
scanmalware.com/scan/8bce60ba-

#GRC #CTI #WebAnalysis #MalwareAnalysis #DataSecurity

2025-10-03

🔍 Web Malware Scan Results

Website: beckley.gov
Security Verdict: LOW RISK

Full analysis & details:
scanmalware.com/scan/9a15618a-

#CTI #GRC #Phishing #SecOps

2025-10-03

🔍 Web Malware Scan Results

Website: deadigital.com.br
Security Verdict: MEDIUM RISK

Full analysis & details:
scanmalware.com/scan/53338276-

#GRC #ThreatHunting #RedTeam #URLScan #CyberResilience

2025-10-03

🔍 Web Malware Scan Results

Website: www.tbgs.co.uk
Security Verdict: LOW RISK

Full analysis & details:
scanmalware.com/scan/98e4c2bc-

#InfoSec #CyberResilience #GRC

2025-10-03

Had to put an early wrap on my GrrCon adventure this year. #dadlife

As always, had a blast! Networked with some super cool people! Looking forward to next year already!

P.S. Where my GRC peeps at??

#grrcon #infosec #grc

2025-10-03

🔍 Web Malware Scan Results

Website: www.ifau.se
Security Verdict: LOW RISK

Full analysis & details:
scanmalware.com/scan/2e367ce1-

#BugBounty #VulnerabilityManagement #GRC #Exploit #MalwareScan

2025-10-03

🔍 Web Malware Scan Results

Website: business.clevelandtxchamber.com
Security Verdict: LOW RISK

Full analysis & details:
scanmalware.com/scan/384518f5-

#GRC #SOC #AIinSecurity #IncidentResponse #CyberSecurity

empressbatempressbat
2025-10-01

keep hearing there is a cyber skills shortage. If this is the case ( and I have never believed it to be totally correct for various reasons) riddle me this: why are there so many highly skilled, knowledgeable, and experienced and people out there looking for work?

Edwin G. Spooks 👻 🍁EdwinG@mstdn.moimeme.ca
2025-09-27

RCMP tells the government that it needs more resources to fight foreign interference

toronto.citynews.ca/2025/09/27
- - -
La GRC dit au gouvernement qu’elle a besoin davantage de ressources pour combattre l’ingérence étrangère

lp.ca/3z9uEv

#Canada #RCMP #GRC #ForeignInterference #IngérenceÉtrangère

Josh Leeitsjoshlee_
2025-09-24

SOC 2? What's that? If you don't know what it is, then you probably need to know. And this article is going to show you what you need to know.

heyjoshlee.medium.com/soc-2-wh

2025-09-22

Founder SaaS chia sẻ: Series B là thời điểm đầu tư vào nền tảng GRC chuyên nghiệp khi quy trình thủ công không còn hiệu quả. Đừng đợi đến lúc quá muộn! #GRC #SaaS #QuảnTrịRủiRo #CôngNghệ #Startup #GRCPlatform #RiskManagement #TechLeadership

reddit.com/r/SaaS/comments/1nn

Ian Wardell, J.D.cytechlaw
2025-09-14

Reddit is having a Virtual SnooSec event for anyone who wants to come! The topic this time is GRC with everything ranging from Controls to how Feroot discovered DeepSeeks hidden data sharing.

Oh and I'll be there :toot:

Check it out:

reddit.com/r/SnooSec/comments/

Client Info

Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst