← All talks
Topic

GRC talks at BSides

99 talks tagged GRC from 46 chapters of BSides events worldwide.

Related topics
PolicyTalkPolicy AnalysisIntroCareerTechnical
28:41
Measuring Cybersecurity Maturity with the NIST CSF
Josh Sokol
BSides Vancouver · 2021
TechnicalGRCThreat ModelingCase Studies and Incidents AnalysisMethodologyTalk
Open →2021-06
50:26
Anti-Checklist Culture: Building Useful Security Compliance
Luka Trbojevic
BSides Seattle · 2020
TechnicalGRCTalk
Open →2020-12
39:37
Lessons Learned While Building a Privacy Operations Center at Headspace Health
Shobhit Mehta
BSidesSF · 2023
PolicyTechnicalGRCPrivacyThreat ModelingTalk
Open →2023-05
50:27
Achieving HITRUST on a Budget
Shobhit Mehta
BSidesSF · 2022
TechnicalGRCIntermediaryCase Studies and Incidents AnalysisTalk
Open →2022-07
24:00
Security Compliance as Code
Rahat Sethi
BSidesSF · 2023
PolicyGRCTalk
Open →2023-05
33:03
The CISO Is Dead. Long Live The CCSO
Grigorios Fragkos
BSides Dublin
CareerCareer & Soft SkillsGRCTalk
Open →2024-06
39:38
10 Things I Wish Every CISO Knew Before an Incident: A View from the IR Trenches
Patterson Cake
BSides Knoxville · 2023
TechnicalDFIRGRCTalk
Open →2023-05
14:20
Poliksena Berisha - Governance, Risk and Compliance (GRC) and role of IT Auditing - BSides Prishtina
Poliksena Berisha
BSides Prishtina · 2022
PolicyGRCTalk
Open →2022-05
37:40
U.S. Cybersecurity Laws and Regulations - An Overview of Key Cybersecurity Legislation
Brennan Crowe
BSides Dallas/Fort Worth · 2024
PolicyGRCIntroTalk
Open →2025-01
37:26
Planes, Trains, and Risk Assessments — Thinking Like a Security Consultant
Marissa Russo
BSides Peru
CareerCommunityCareer & Soft SkillsGRCIntroTalk
Open →2021-10
43:16
What's the Point of Compliance? Making Paperwork Useful
Rachael Lininger
BSides DC · 2018
PolicyGRCTalk
Open →2018-11
55:20
Show Me the Money: Building Business Cases for Security at Small Organizations
Carlota Sage
BSides Augusta
CareerCommunityCareer & Soft SkillsGRCTalk
Open →2021-10
56:17
What Would the CISO Do (WWCD) — How to Build a Security Strategy
Helen Patton
BSides Knoxville · 2021
CareerGRCThreat ModelingTalk
Open →2021-05
58:13
ABRACADABRA – Make your breach reporting woes disappear!
Jake Williams
BSides Augusta · 2018
PolicyGRCTalk
Open →2018-10
28:35
Risk Management Explained Through Star Wars
Kenny Scott
BSides SLC · 2025
TechnicalGRCIntroTalk
Open →2025-06
39:48
Show Me the Money: Getting Business Buy-in for Security
Carlota Sage
BSides Cayman Islands · 2022
Career & Soft SkillsGRCTalk
Open →2022-07
22:35
Guardians of the Data Galaxy
Hannah Suarez
BSides Berlin · 2023
TechnicalCloud IAMGRCThreat IntelTalk
Open →2024-01
52:37
Josh Sokol: Measuring Cybersecurity Maturity with the NIST CSF
Josh Sokol
BSides Calgary · 2021
TechnicalGRCThreat ModelingTalk
Open →2021-12
30:41
Tales from the Audits
Justin M. Leapline
BSides Peru · 2016
War StoriesGRCTalk
Open →2016-06
39:24
Cloud adoption and PCI DSS compliance: strategies and tools to ensure secure payment data storage
Vaibhav MahadikYazad KhandhadiaNitin BhatnagarMilind MungaleBharat Panchal
BSides Ahmedabad · 2024
PolicyCloud IAMGRCPrivacyPanel
Open →2024-05
21:54
e-Government
Peter Kirkov
BSides Sofia · 2023
PolicyGRCPolicy AnalysisKeynote
Open →2023-03
17:01
Bootstrapping Security in the Wild: A Ground Up Guide for Remote-First Teams
Aditya Dev
BSides Toronto · 2025
TechnicalCloud IAMDevSecOpsGRCIntroTalk
Open →2025-10
45:38
How HIPAA Compliance helps and hinders true patient data security
Dan Anderson
BSides SLC · 2016
PolicyTechnicalGRCPrivacyTalk
Open →2016-05
18:39
Emerging Cyber Trends
Gergana Winzer
BSides Sydney
GRCThreat IntelThreat ModelingIntroKeynote
Open →2023-05
51:54
Del CVE al CEO: Cómo Hacer que la Alta Dirección Escuche a los Hackers
BSides CDMX · 2025
TechnicalGRCThreat ModelingVulnerability ResearchIntermediaryMethodologyTalk
Open →2025-07
30:44
Healthcare Vulnerabilities During COVID-19: Ransomware, Phishing, and Insider Threats
Shea JacksonAnna Skelton
BSides Las Vegas · 2021
TechnicalGRCHealthcare SecurityMalware AnalysisSocial EngineeringIntroBlueCase Studies and Incidents Analysis+1
Open →2021-08
22:38
Delete Your Data
Jacob Smith
BSides PDX · 2022
TechnicalGRCPrivacyIntroTalk
Open →2022-10
28:49
Exploring Discrepancies In CISO Job Advertisements: An Analysis - Leonhard Kurthen and Daniel Fall
Leonhard KurthenDaniel Fall
BSides Munich · 2023
CareerResearchCareer & Soft SkillsGRCCase Studies and Incidents AnalysisEmpirical ResearchTalk
Open →2023-10
50:00
I'm a Little Bit (FedRAMP) Country, I'm a Little Bit SOC2 'n Roll
Shea NangleWendy Knox Everette
BSides Las Vegas · 2022
TechnicalGRCTalk
Open →2022-09
24:51
Pivot with Purpose: Future-Proofing Your Cybersecurity Career
Sydnie Beckman
BSides SLC · 2026
CareerCareer & Soft SkillsGRCIntroTalk
Open →2026-04
31:30
Practical Blue Teaming by Peter Jones
Peter Jones
BSides Leeds
TechnicalDetection EngineeringGRCThreat IntelBlueTalk
Open →2023-07
51:22
The Security Practitioner's Guide to Going from "No" to "Whoa"
Josh SokolJohn Overbaugh
BSides Vancouver · 2022
CareerCareer & Soft SkillsGRCThreat ModelingTalk
Open →2022-07
1:02:14
Fallout from Florida: Oldsmar Water Plant Hack and Critical Infrastructure Security
Jordan SesslerAnthony Hendricks
BSides Knoxville · 2021
PolicyTechnicalGRCTalk
Open →2021-05
33:48
How to Prepare for the SEC Cybersecurity Rules Before December 2023
Dick Brooks
Bsides CT · 2023
PolicyGRCSupply Chain SecurityTalk
Open →2023-10
33:09
Fe-fi-fo-FIM, I Smell The Monitoring Of An Elastic Stack!
Brett Calderbank
BSides Manchester · 2019
TechnicalDetection EngineeringGRCTalk
Open →2019-09
50:32
The Overlooked Security Risk: 3rd Party Risk Management
BSides Vancouver · 2021
TechnicalGRCSupply Chain SecurityBlueDemoTalk
Open →2021-06
52:29
$how Me the Money! Getting Buy-In for a Security Program
Carlota Sage
BSides Charm · 2022
CareerCareer & Soft SkillsGRCTalk
Open →2022-07
37:26
You Can "Trust" Me, I'm "Compliant": A Practical Approach to Automating Compliance and Demonstrating Trust
Adam Duman
BSides Peru · 2023
TechnicalGRCTalk
Open →2023-08
46:10
Let's Chat About SOC 2s, Baby
Wendy Knox Everette
BSides Las Vegas · 2021
PolicyGRCIntroTalk
Open →2021-08
15:37
From Chaos To Calm: Mastering InfoSec Audits
Sadik Miah
BSides London · 2025
TechnicalGRCTalk
Open →2026-03
27:02
The Security Policy Rollout Survival Guide
Maya Kaczorowski
BSides Seattle · 2026
PolicyGRCTalk
Open →2026-03
21:31
How Living History and Quilting Made Me a Better Cybersecurity Professional
Mea Clift
BSides Las Vegas · 2024
CareerCareer & Soft SkillsGRCTalk
Open →2024-09
46:03
Building Minimum Viable Security in SMBs
Claus Cramon Houmann
BSides Luxembourg · 2017
GRCTalk
Open →2017-10
20:40
Don't Panic! A Guide to Proactive Security for Small Businesses
Ryan St. GermainClarissa Bury
BSides Charm · 2023
TechnicalGRCThreat IntelToolingBlueTalk
Open →2023-05
14:54
Talking Cyber To The Boardroom: What I Wish I Knew Sooner - Lee Ward
Lee Ward
BSides London · 2025
CareerCareer & Soft SkillsGRCTalk
Open →2026-03
50:03
Cybersecurity Maturity Model Certification (CMMC), is here. Are you ready?
Peter Bagley
BSides Tampa · 2025
PolicyGRCSupply Chain SecurityIntermediaryTalk
Open →2025-07
47:45
Risky Business: The Risk Illiteracy Problem in Security
Sean Juroviesky
BSidesROC · 2025
TechnicalGRCThreat ModelingBlueTalk
Open →2025-03
52:01
Lessons Drawn From Cybersecurity In The Rise of Privacy Tech
Lourdes TurrechaMichelle DennedyMelanie Ensign
BSides Las Vegas · 2021
GRCPrivacyPanel
Open →2021-08
53:09
You Detected a Data Breach: Now What?
Kelcey Patrick-Ferree
BSides Iowa · 2017
PolicyGRCPrivacyKeynote
Open →2017-04
41:01
Staying Compliant in the Age of AI
Samantha Ramos
BSides Tampa · 2026
PolicyAI SecurityGRCIntroBlueCase Studies and Incidents AnalysisPolicy AnalysisTalk
Open →2026-03
50:47
RAG Against the Machine: Using Retrieval-Augmented Generation & MCP to Fortify Cybersecurity Defense
Brennan Lodge
BSides Las Vegas · 2025
TechnicalAI SecurityDetection EngineeringGRCTalk
Open →2025-12
28:46
Your Board Deck Sucks!: Why you can't get buy-in for your security program
Walt Powell
BSides KC · 2023
CareerCareer & Soft SkillsGRCIntermediaryTalk
Open →2023-10
41:34
Cyber Risk Management for Florida's Critical Infrastructure by Dan Holland of Arete Solutions
Dan Holland
BSides Tampa · 2023
TechnicalGRCThreat ModelingTalk
Open →2023-08
33:56
CIMA Statement of Guidance and You: How to Navigate New Regulations
RJ Sudlow
BSides Cayman Islands · 2022
PolicyGRCIntroTalk
Open →2022-11
38:32
Cybersecurity Maturity Model Certification (CMMC)
Mark Funderburk
BSides Greenville · 2021
PolicyGRCSupply Chain SecurityTalk
Open →2021-10
59:44
Secure IT Operations: How to Shoehorn Security into a Small/Medium Business
Carl Hertz
BSides Las Vegas · 2022
CareerTechnicalGRCTalk
Open →2022-09
24:59
FedRAMP 20x Explained: Faster, Cheaper, Better Compliance
Kenny Scott
BSides SLC · 2026
PolicyGRCTalk
Open →2026-04
45:02
When the Breach Hits the Fan: Understanding Cyber Insurance
Mea Clift
BSides Las Vegas · 2025
PolicyGRCTalk
Open →2025-12
57:47
CISO Leadership Panel – Real-World Strategies from Security Executives
Bryce KunzJohn BulloughBrent DillonAdam MarreJosh Pugmire
BSides SLC · 2025
CareerCareer & Soft SkillsGRCPanel
Open →2025-06
33:38
Compliance meets SIEM automation
BSides Newcastle · 2020
TechnicalActive DirectoryDetection EngineeringGRCTalk
Open →2020-11
24:32
In Scope, Out Of Sight: Why NIS-2 Isn't Landing In German SMEs
Younes Ahmadzei
BSides Munich · 2025
PolicyResearchGRCCase Studies and Incidents AnalysisEmpirical ResearchTalk
Open →2026-02
17:41
Breaking In, Standing Tall: A Rookie’s Guide To Confidence In GRC - Funke Omolere
Funke Omolere
BSides London · 2025
CareerCareer & Soft SkillsGRCIntroTalk
Open →2026-03
53:30
Data You Don't Store Cannot Be Hacked
Michael Spurgeon
BSides Delaware · 2015
TechnicalGRCPrivacyTalk
Open →2016-07
1:30:49
IATC - Difficult Conversations
Andrea M. Matwyshyn
BSides Las Vegas
PolicyGRCKeynote
Open →2024-09
20:55
Don't Run Six Checklists: A Sane Guide to AI + Healthcare GRC
Pranay Mehta
BSides Seattle · 2026
TechnicalAI SecurityGRCTalk
Open →2026-03
23:30
Cyber Risk Categorization for Unmanned Vehicle Systems
Steve Griffing
BSides Augusta · 2022
TechnicalGRCIoTThreat ModelingIntermediaryBlueCase Studies and Incidents AnalysisTechnical Deep-dives+1
Open →2022-10
36:57
Target Rich Cyber Poor
Don BenackTom Millar
BSides Las Vegas · 2022
CommunityPolicyGRCThreat ModelingTalk
Open →2022-09
45:12
The Vulnerability Deluge: How to Dig In
Nivedita Murthy
BSides NoVa · 2021
TechnicalDetection EngineeringGRCVulnerability ResearchTalk
Open →2021-06
38:44
What You Need to Know About Bill C-26: Eric Jensen
Eric Jensen
BSides Edmonton · 2023
PolicyGRCTalk
Open →2023-11
47:39
PCI DSS 4.0: What's Changed and What It Means
Justin Leapline
BSides Peru
TechnicalGRCTalk
Open →2022-09
47:37
Policy as [versioned] code – you're doing it wrong
Andrés Vega
BSides Cayman Islands · 2023
TechnicalDevSecOpsGRCSupply Chain SecurityPurpleTalk
Open →2023-05
53:08
Extortion, Chaos and Needless Busywork: Vendor Risk Management
Jim Nitterauer
BSides Charm · 2022
PolicyGRCTalk
Open →2022-07
59:41
Liability Landmines: How Security Failures Create Legal Exposure
BSides Knoxville
PolicyGRCThreat ModelingTalk
Open →2025-07
23:34
Gen-Z Critique on SOC 2
Charissa Kim
BSides Las Vegas · 2024
PolicyGRCIntroTalk
Open →2024-09
55:15
Homicideware
Andrea M. Matwyshyn
BSides Las Vegas · 2024
PolicyGRCPolicy AnalysisKeynote
Open →2024-09
57:17
Conducting Security Assessments: Lessons for those being assessed and those wanting to do it
Michael R. Brown
BSides Tampa · 2023
TechnicalGRCTalk
Open →2023-08
25:59
Cyber Security's New Silver Bullets - Privacy and Insurance
Chinmayee PaunikarKen RaynerAlan McDermott
BSides Toronto · 2022
PolicyGRCPrivacyPanel
Open →2022-11
23:05
Cybersecurity Maturity Model Certification: Insights from a C3PAO
Matt Schiavone
BSides Peru · 2023
PolicyGRCTalk
Open →2023-08
57:32
CISO Panel1
BSides Tampa · 2023
CareerCareer & Soft SkillsGRCSupply Chain SecurityBluePanel
Open →2023-03
49:56
GRC: The Swiss Army Knife
Rose Songer
BSides Peru · 2022
CareerGRCTalk
Open →2022-09
32:42
Cybersecurity & The Board: Choosing success over the Sarlacc Pit
Brian Contos
BSides Barcelona · 2021
PolicyGRCThreat IntelTalk
Open →2022-01
26:35
From Pods to PCI: Translating Kubernetes Security for Security Audit & Compliance
Udochi Nwobodo
BSides Philly · 2025
TechnicalContainer SecurityGRCThreat ModelingTalk
Open →2026-02
44:49
Leveraging RMF for CMMC Success Strategy, Structure, and Solutions for Defense Vendors
Mike Brooks
BSides Tampa · 2026
PolicyGRCTalk
Open →2026-02
23:10
Communications Authority of Kenya
BSides Nairobi · 2022
PolicyGRCThreat IntelPolicy AnalysisTalk
Open →2022-12
50:32
Waking Up to AI: An Adventure in Governance
Brian Myers
BSides Seattle 2026
PolicyAI SecurityGRCSupply Chain SecurityIntroCase Studies and Incidents AnalysisTalk
Open →2026-04
46:35
Your Board's Perspective On Cyber
Jessica Figueras
BSides London · 2025
PolicyGRCIntroTalk
Open →2026-03
40:06
Shadow AI Is Your New Data Exfiltration Channel
Chijioke Okoye
BSides Exeter · 2026
TechnicalAI SecurityDetection EngineeringGRCTalk
Open →2026-05
14:52
Bring Your Own Breach? Managing BYOAI Risk in the Cloud
Meletius Igbokwe
BSides Bournemouth · 2025
TechnicalAI SecurityCloud IAMGRCTalk
Open →2025-09
11:54
NC4
BSides Nairobi · 2022
PolicyCareer & Soft SkillsGRCThreat IntelIntroPolicy AnalysisTalk
Open →2022-12
41:26
TimMcCreight
Tim McCreight
BSides Calgary
CareerGRCTalk
Open →2022-12
17:02
The Ballad Of Alex Pedersen: A Journey Of Compliance As A Techie
Alex Pedersen
BSides Cambridge · 2024
CareerGRCTalk
Open →2024-01
24:28
Don't Be a Data Dummy
Katie McMillan
BSides Newcastle · 2025
TechnicalGRCThreat ModelingIntroTalk
Open →2024-01
27:05
Everybody's Got Something To Hide, Except For Me And My Incident Response Plan by David Cook
David Cook
BSides Liverpool
PolicyGRCThreat IntelTalk
Open →2022-01
28:29
Cyber Civil Defense: Volunteers to the Rescue
Grace Mena
BSides Las Vegas · 2025
CommunityPolicyCareer & Soft SkillsGRCTalk
Open →2025-12
42:01
Getting Smarter About Data Privacy
Parul Khanna
BSides Calgary
TechnicalGRCPrivacyIntroBlueTalk
Open →2022-12
5:25
Cybersecurity & The Board: Choosing Success Over the Sarlacc Pit
Brian Contos
BSides Islamabad · 2021
CareerCareer & Soft SkillsGRCTalk
Open →2022-05
20:51
Reasonable Rapid Recognition and Response to Rogues
Craig Bowser
BSides Charm · 2019
TechnicalDetection EngineeringGRCNetwork SecurityBlueTechnical Deep-divesTalk
Open →2021-05
39:27
Compliance to the Rescue: Transforming Compliance from Burden to Benefit
Ian MacMillan
BSides St. John's · 2025
TechnicalGRCTalk
Open →2025-05
31:49
FAA, FTC, FCC — How Three Federal Agencies Are Shaping Information Security
Elizabeth Wharton
BSides Las Vegas · 2015
PolicyGRCTalk
Open →2016-12