Practical GRC Project Guide

This video is the guide to the practical GRC project - I go through the project in detail and preform the first subcategory to get an idea of what to do for the following questions.

I MADE A MISTAKE in the video - I review an ASU policy and then find a standard that IS the standard to the policy I was reviewing but had a brain fart and didn't realize that thinking it was a different standard I found from the policy - an important part of GRC is also admitting mistakes when they are made!

In this video, we dive into a practical GRC project centered around the National Cybersecurity Review (NCSR), which follows the NIST Cybersecurity Framework (CSF). I guide you through the steps to take in conducting the project, designed to determine the cybersecurity maturity level of any organization you choose. This project will help you build essential skills such as risk management, conducting risk assessments, and program management, providing real-world experience in improving an organization’s cybersecurity posture

NCSR Tool: docs.google.com/spreadsheets/


GRC Resources: docs.google.com/spreadsheets/


NIST CSF Tool: csf.tools/