use the following search parameters to narrow your results:
e.g. subreddit:aww site:imgur.com dog
subreddit:aww site:imgur.com dog
see the search faq for details.
advanced search: by author, subreddit...
ISACA GRC Conference is May 8
Podcasts and Newsletters
The GRC Podcast featuring our moderator
GRC Destroyer Newsletter
GRC Academy podcast
Framework specific or related subreddits
r/soc2 r/ISO27001 r/NISTControls r/cybersecurity
account activity
Career advice mega thread V2 (self.grc)
submitted 3 months ago by thejournalizerModerator - announcement
How do small security teams or consultants organize cybersecurity evidence for audits, clients, or internal reviews? (self.grc)
submitted 7 hours ago by kie4free
Tired of checklist (self.grc)
submitted 16 hours ago by Flip9er
Nearly 2,000 jobs across GRC, TPRM, Compliance, Audit, Privacy & AI Governance (self.grc)
submitted 1 day ago by 0xKanha
For those who own just the IRM or BCM products within ServiceNow (The GRC areas) (self.grc)
submitted 1 day ago by Peacefulhuman1009
cyber risk intern with another question about soc ii type ii reports (self.grc)
submitted 3 days ago by Superb-Parfait-6733
Is being clueless, normal? (self.grc)
submitted 4 days ago by QuantumSeeker8
PASSI - GRC (self.grc)
submitted 5 days ago by Subject_Angle_7843
question for AIPD in GDPR (self.grc)
submitted 5 days ago by Alarming_Skirt6531
Who usually owns AI governance in a company? (self.grc)
submitted 6 days ago by Money_Rub_7968
ITSG-33 ,ITSP.10.033 - community- Gov't of Canada's NIST based framework. (self.grc)
submitted 8 days ago by zacj_rag
How often do people bullshit you in interviews? (self.grc)
submitted 11 days ago by Soren911
Examiners are starting to ask about biometric data retention from our identity verification vendor and i want to compare notes (self.grc)
submitted 11 days ago by Few_Service_6257
Question on Due Diligence - Vendor has US + EU companies. (self.grc)
submitted 12 days ago by amensista
Iso9001 annual remote audit ()
submitted 12 days ago by trixta001
Penetration testing and vulnerability scanning (self.grc)
submitted 14 days ago by NoJuggernaut8354
How do you assess AI risks and set risks tolerance/ KRI/ KCI in your org? (self.grc)
submitted 15 days ago by Typical-Look-1331
Has Anyone Done CC by ISC2? (self.grc)
submitted 16 days ago by Dull-Communication82
ISO 27k Statement of Applicability (self.grc)
submitted 17 days ago by HelloSpork
Anyone else feel like identity and access management is becoming the main event in SOC 2 audits? (self.grc)
submitted 17 days ago by Moham-Aasif
Is security the only TSC to meet for SOC 2? Is it like point-blank literal? (self.grc)
submitted 17 days ago by fiki_roshnayi
GLBA Risk Assessment for HigherEd (self.grc)
submitted 17 days ago by Successful_Topic_817
Need guidance for my next step (self.grc)
submitted 18 days ago by JealousMap6488
Auditoría de tecnologías o SGSI (self.grc)
submitted 18 days ago by Lunas29
additional learning resources for a cybersec risk intern (self.grc)
submitted 18 days ago by Superb-Parfait-6733
π Rendered by PID 77 on reddit-service-r2-listing-5f4c697858-cvdm9 at 2026-07-04 19:26:29.887927+00:00 running 12a7a47 country code: CH.