Security professionals need to take full advantage of GRC programs to improve their understanding of their organization’s risks, experts say. The insights gained can help them to develop better controls to protect the organization from cyber-attacks and insider threats. Organizations vary widely in the maturity of their efforts to integrate security with GRC, an analyst says. GRC is increasingly being used as part of a comprehensive enterprise risk management program, he adds. By understanding the business processes that rely on that equipment, security teams can decide what kind of firewall rules to apply.”]
Source: https://www.cuinfosecurity.com/how-to-leverage-grc-for-security-a-6164