As regulations proliferate regarding the risks posed by our increasingly digital economy, companies face a choice: make cyber compliance the responsibility of existing teams or build a brand-new function: cybersecurity GRC, seated at the intersection of business, IT, privacy and cybersecurity. Security risk and compliance director Yasmine Abdillahi of Comcast clearly favors the latter, as she explores here.
The digital revolution has given rise to cybersecurity governance, risk and compliance, which sits at the intersection of business, IT, privacy and cybersecurity. This function creates and oversees the processes and policies that organizations put into place to manage and mitigate the risks associated with the technologies and data they use.
As more emerging technologies are integrated into organizations — and as new and updated compliance regulations are continually being introduced — cybersecurity GRC is becoming increasingly complex to navigate. It’s crucial to understand the difficulties these teams face, as well as some of the best practices for cybersecurity these teams can employ today.
Evolving challenges for cybersecurity GRC teams
Governance is a…
