GRC & Me-logo

GRC & Me

Business & Economics Podcasts

When Governance, Risk, and Compliance (GRC) issues are in the headlines, it’s usually a bad thing. It’s only when a major data breach happens, or a company runs afoul of some regulation, that these important responsibilities get their time in the limelight. GRC & Me is here to shine a light on those individuals tasked with safeguarding their employers’ information and integrity, day in and day out. Tune in every other week as host Megan (Phee) Brown, Director of International Sales at LogicGate, and her guests explore the issues and ideas that give shape to these interconnected functions. Just as GRC touches many parts of a business, so too will the podcast delve into a wide array of concerns—from current events and modern methodologies to cultural nuances and game-changing developments. Join us and learn why GRC is so critical to the future of any organization, where the industry has been—and where it’s going.

Location:

United States

Description:

When Governance, Risk, and Compliance (GRC) issues are in the headlines, it’s usually a bad thing. It’s only when a major data breach happens, or a company runs afoul of some regulation, that these important responsibilities get their time in the limelight. GRC & Me is here to shine a light on those individuals tasked with safeguarding their employers’ information and integrity, day in and day out. Tune in every other week as host Megan (Phee) Brown, Director of International Sales at LogicGate, and her guests explore the issues and ideas that give shape to these interconnected functions. Just as GRC touches many parts of a business, so too will the podcast delve into a wide array of concerns—from current events and modern methodologies to cultural nuances and game-changing developments. Join us and learn why GRC is so critical to the future of any organization, where the industry has been—and where it’s going.

Language:

English


Episodes

Shifting Gears To Quantify Risk with Netflix’s Tony Martin-Vegue

11/8/2023
Switching from traditional risk analysis methods like ordinal lists or red-yellow-and-green charts to more modern approaches like risk quantification requires a paradigm shift in how you think about measuring risk, but the increased accuracy, specificity, and reliability you’ll gain by doing so pays dividends. On this episode of GRC & Me, Netflix’s Tony Martin-Vegue join LogicGate’s Chris Clarke to explore the best ways to navigate this transition, how to learn and leverage popular risk quantification frameworks like Open FAIR, and why you shouldn’t completely throw your colored charts out the window just yet.

Duration:01:07:53

Please Hack Me: Hacking Companies for Good

10/18/2023
They say it takes a thief to catch a thief, so why not a hacker to catch a hacker? That was the premise behind Ted Harrington’s Independent Security Evaluators, a company dedicated to poking holes into other companies’ cyber defenses — for the right reasons, of course. On this episode of GRC & Me, Ted takes LogicGate’s Chris Clarke on a journey down the benevolent hacker’s rabbit hole, where they discuss:

Duration:01:11:06

Rockets, Radios, and Risk: How NASA Manages Uncertainty in Orbit

10/4/2023
Few careers involve managing as much risk as one where you’re responsible for launching humans riding gigantic rockets into outer space. That’s exactly what Barrios Technology Chief Strategy Officer Ginger Kerrick did during her three-decade career working for NASA. On this episode of GRC & Me, Ginger joins LogicGate’s Chris Clarke to discuss methods for developing methodical, standardized thought processes for risk decision-making in high-stakes scenarios, how NASA employees are trained to separate logic from emotion, how disasters can inform future mitigation planning, and why the most important part of managing risk is having the right leaders in place.

Duration:01:01:09

Managing Risk on the Frontlines of the Financial Sector

9/20/2023
One of the most high-profile risk events of the last year was the swift collapse of Silicon Valley Bank and other regional banks amid spiking interest rates. Part of the problem? The lack of a complete, comprehensive view of the risks these banks were facing — in particular, liquidity risk. Allstate Canada's Chief Risk Officer Jason Wang has spent his career assessing and analyzing risk in the financial services space, dedicated to anticipating and mitigating risks just like the one that sank SVB. On this episode of GRC & Me, Jason joins LogicGate’s Chris Clarke to discuss the importance of building a holistic risk register, how to position risk management as a strategic enabler instead of a “revenue prevention” department, why it’s critical to include your chief risk officer on the executive team, and more.

Duration:01:03:58

Staying in the Fed’s Favor: Navigating Government Contracts with Intel Federal’s John Griffin

8/22/2023
When doing business with the federal government and its myriad agencies, organizations are bound to run into plenty of mandates, regulations, and other requirements. Navigating them all can cause a headache for even the most detail-oriented compliance managers.On this episode of GRC & Me, Chris Clarke is joined by Intel Federal’s Compliance Program Manager, John Griffin. Griffin draws on his decades of experience in federal contracting and working with government agencies at companies like Honeywell and Boeing to explore methods for better managing product development and performing diligence on third-party vendor relationships while operating under strict and stringent government standards and requirements. Plus, learn a few of Griffin’s more creative methods for determining how risky a particular organization might be to work with.

Duration:00:59:50

Building Robust Risk Cultures Through Collaborative Cyber Risk Management

8/8/2023
Oftentimes, cyber risk teams are viewed as reactive “audit police,” swooping into projects to flag risks and forcing changes at key points. This approach can generate a resentful — even toxic — risk culture. There’s a better way to build healthier risk cultures: Taking a more collaborative, embedded approach to cyber risk management by positioning cyber risk leaders as advisors and partners, working side-by-side with project teams from the start. On this episode of GRC & Me, Chris Clarke is joined by Cyberpink’s Founder & Owner, Praj Prayag-Deb, to discuss how to shift your organization’s risk culture toward this new approach, her formula for building successful cyber risk programs from scratch, how leveraging the right technology makes it all possible, and why adopting a growth mindset is critical for every cyber risk leader.

Duration:00:56:10

Building Robust Risk Cultures Through Collaborative Cyber Risk Management

8/3/2023
Oftentimes, cyber risk teams are viewed as reactive “audit police,” swooping into projects to flag risks and forcing changes at key points. This approach can generate a resentful — even toxic — risk culture. There’s a better way to build healthier risk cultures: Taking a more collaborative, embedded approach to cyber risk management by positioning cyber risk leaders as advisors and partners, working side-by-side with project teams from the start. On this episode of GRC & Me, Chris Clarke is joined by GEICO’s Praj Prayag-Deb, Head of Cybersecurity Risk to discuss how to shift your organization’s risk culture toward this new approach, her formula for building successful cyber risk programs from scratch, how leveraging the right technology makes it all possible, and why adopting a growth mindset is critical for every cyber risk leader.

Duration:00:56:17

Using Cyber Risk Quantification to Make the Right Risk Decisions

7/26/2023
Cybersecurity programs involve lots of moving parts, and they only grow more complex over time as technology becomes more advanced and cyber threats become more numerous and sophisticated. Cyber risk quantification can be a crucial tool for keeping up with shifting cybersecurity landscapes.On this episode of GRC & Me, Chris Clarke is joined by Protiviti’s Daniel Stone, Director, and Tim Kelly, Associate Director, to discuss how cyber risk quantification can lead to better risk decision-making, how to beat analysis paralysis when you’ve got reams of risk data in front of you, and the best ways to use risk quantification to reduce reactivity and improve communication across your organization.

Duration:00:58:13

Preparing for DORA, NIS2, and the new European push for cybersecurity

6/28/2023
With information and cybersecurity incidents growing in frequency and severity, regulators in the European Union are hard at work devising new rules designed to incentivize organizations to harden their cyber defenses. On this episode of GRC & Me, Megan Brown sits down with Wizz Air’s Andras Szabolcs, Cyber Risk Expert, and Peter Szigetvari, Operational Risk Expert, to break down the similarities and differences between two of these new European Union regulations — the Digital Operational Resilience Act, or DORA, and Network and Information Security Directive 2, or NIS2 — how they could affect nearly every company despite their official scope, and how organizations can prepare to comply with them using modern GRC technology.

Duration:00:34:17

The Risks and Rewards of AI in Business Automation

5/31/2023
In just a few months, artificial intelligence went from a fringe technology to full-speed ahead with the public release of ChatGPT. This fascinating technology has the potential to revolutionize how we automate our businesses, but there are numerous reasons to give pause before integrating it into your organization’s operations. On this episode of GRC & Me, Dorian Cougias, Co-Founder and CEO of United Compliance Framework and Chris Clarke sit down to discuss the risks and rewards of embracing AI-driven automation, corpora management, data ownership, and the necessity of double-checking everything generative AI spits out.

Duration:01:10:53

Positioning GRC as an Enabler with Integrated Data

2/2/2023
On this episode of GRC & Me, Andy Ruse and Mike Curl, former Regulatory Data Manager at Honeywell, discuss the benefits of building dashboards from the bottom up, how to get organizational buy- in when it comes to change management, and Mike's unique culinary approach to executive reporting.

Duration:00:14:26

Breaking Down Organizational Silos With a Common Risk Language

1/19/2023
Getting everyone on the same page about the risks your organization is facing is a crucial part of effectively managing organizational risk. Unfortunately, it’s also one of the hardest parts about effectively managing risk. On this episode of GRC & Me, Dimitrios Stergiou, Director of Information Security at Wayflyer, explains how risk quantification and proper use of standard frameworks can help you build a common language for understanding risk across your organization, break down organizational silos, and get buy-in for your programs.

Duration:00:23:54

The Five Layers of a Mature GRC Program

1/4/2023
On this episode of GRC & Me, Andy Ruse, LogicGate’s President of Field Operations, sits down with Cooley’s Mike Santos, Director of Security and Information Governance, to discuss his five-layer maturity model for building effective GRC programs, the different things a risk practitioner has to consider in decision making, and his own recommendations for maturing any risk program.

Duration:00:25:05

Measurement as a Foundation for Communicating Risk

12/21/2022
Properly measuring risk is the most important ingredient in effectively communicating risk, and communicating risk leads to a richer risk culture at your organization. On this episode of GRC & Me, we sat down with OKTA’s Anthony Riley to hear his best practices for measuring and communicating risk.

Duration:00:09:56

Building the Business Case for Getting the Right GRC Technology

12/7/2022
This episode takes a deep dive into creating a business case for investing in GRC technology by proving its cost-saving impact. LogicGate CEO Matt Kunkel spoke with Michael Rasmussen, a renowned GRC expert, to discuss the past, present, and future of GRC spending. Listen to discover how to build a business case for upgrading to the latest and greatest in GRC.

Duration:00:21:44

The Risks We Cannot See

11/23/2022
On this episode of GRC & Me, we explore business resilience and the differences between proactive, reactive, and preemptive approaches to crisis management with Howard Mannella, Senior Staff of Global Business Continuity and Security at Udemy. We learn how Howard stays ahead of risks by focusing on their impact and how organizations of all sizes can evolve their GRC programs. Listen to the full episode for valuable insights any business can use to stay resilient.

Duration:00:09:32

How to Build a Risk Practice

11/9/2022
This episode tackles the essential topic of how to build and mature a risk program aligned with business objectives. Andy Ruse, LogicGate’s president of field operations, recently caught up with James Bundy, practice director at cybersecurity consulting firm Optiv, to explore how businesses across all industries can create a holistic GRC program that contributes to real business growth. How can compliance requirements become business enablers? Listen to find out.

Duration:00:16:50

Enhancing Your Business Continuity Framework in a Volatile Environment

10/26/2022
LogicGate’s Megan Phee sat down with Jason Wang, Chief Risk Officer at Synergy Credit Union, to explore the importance of creating or refining business continuity plans in the face of volatility. Business continuity plans help you make critical decisions before you need them. Otherwise, you make those decisions during a business-impacting event when every hour matters. Listen to the full episode to hear Jason’s valuable advice for making enterprise-wide decisions to improve your resilience.

Duration:00:17:12

Going Paperless & Improving GRC Processes

7/27/2022
Making things easier and less paper-bound through digital technology is a top priority for many organizations, especially when it comes to their GRC initiatives. In this episode, LogicGate’s Megan Phee is in London with UAE-based Proxis founder and managing director, Tina Chugani. Join us as Megan and Tina talk about the concept of process digitalization and trends that Tina is seeing within her region. Plus, how technology is helping to make it rain in the desert. Learn more about Proxis at proxis.me

Duration:00:19:02

Prices Are Rising. How to Prepare for Inflation Now & Later.

7/13/2022
With prices increasing across the board, it is getting harder to avoid inflation's risk and a potential recession. In this episode, LogicGate CEO Host Matt Kunkel sits down with John Hotchkiss, Fairway Independent Mortgage Company's Chief Risk Officer. Join us as Matt and John look at how inflation will affect the risk landscape and how best to prepare.

Duration:00:16:41