Welcome to Delicate template
Header
Just another WordPress site
Header

IT GRC, The Story – How do you do it? – Part 1

August 19th, 2011 | Posted by Tommy Thompson in IT GRC - (1 Comments)

I was recently discussing IT GRC program implementation with the  CIO of a growing, mid-sized software company when he presented the question, “But HOW do you do it? I mean, how do you get employees to follow the rules in a GRC program?”  My response to his question…Read more

Tommy Thompson

Tommy Thompson

Tommy Thompson is True's Director of Program Development Services, specializing in IT GRC and security program initiatives. Tommy has implemented successful IT GRC programs from start to finish, gaining valuable experience and lessons learned to develop a proven, proprietary True IT GRC Framework Methodology used to guide clients to IT GRC success. Tommy has presented at multiple IT conferences; served as a Director of the Product Enhancement Committee for a leading GRC Platform software solution; and has consulted multiple Fortune 100 and 500 companies.

, ,

Security Notes

January 30th, 2008 | Posted by Dominic Schulte in Security - (0 Comments)

For those who haven’t already noticed, Security Notes[truedigitalsecurity.com] are now accessible from this blog! For this month[truedigitalsecurity.com], I discussed how many organizations seem to be emphasizing perimeter security to the detriment of many other aspects that make up a healthy, holistic security program.

For more examples of why just keeping people out doesn’t solve the whole problem, check out this[sans.org] Internet Storm Center Diary and this[truedigitalsecurity.com] previous post.

Dominic Schulte

Dominic Schulte

Dominic Schulte currently serves as the Managing Director of Security Services & Consulting at TRUE, where he is responsible for the execution of a wide range of security and regulatory compliance services. Previously, Dominic worked with the National Security Agency (NSA) as a Global Network Exploitation and Vulnerability Analyst in the National Security Incident and Response Center (NSIRC). He holds CISSP, QSA and CNSS 4011-4015 certifications.

, ,