Archive - GRC Destroyer

VIDEO MEME FRIDAY EPISODE #1 - TPRM

It's Friday, I'm not selling you shit, I'm spreading crucial awareness for the culture. For the betterment of the industry. For Patrick Opet, CISO of…

May 16 •

0:14

GRC Destroyer #10: What does GRC Destroyer mean?

Long overdue explanation of the name and update on the ethos of this blog.

May 8 •

January 2025

GRC Destroyer #9: The Perfect GRC Tool

I discuss the perfect GRC tool based on the community echo-chamber. Hopefully this will spark some ideas for practitioners and product designers alike.

Jan 28 •

GRC Destroyer's 2025 "INs"

Happy new year to all my legend subs and GRC fanatics. Taking a stab at the biggest trends for 2025 and I hope you find it useful. 2025 is going to be…

Jan 9 •

3:33

October 2024

GRC Destroyer #8: THE MODERN AUDITOR MANIFESTO (Part 1: GRC = Internal Audit)

Part 1 of a deep dive. How to run an audit program ALONE in 2024. I'll address compliance-in-a-box solutions vs. old-school methods and what your main…

Oct 16, 2024 •

June 2024

GRC Destroyer #7: Troy Fine Meme Review for the CULTURE

I unpack my top 10 Troy Fine memes - Troy, GRC meme god and compliance expert, has cultivated a powerful community around the misunderstood GRC…

Jun 19, 2024 •

GRC Destroyer #6: Hacking Security Questionnaires for the Low ($$$)

Quick 3 step game plan about modern day "trust" strategy for the low ($$$). Hot take at the end. Can't wait for the impending DM's on this one - I'm not…

Jun 11, 2024 •

January 2024

GRC Destroyer #5: What is GRC automation? How do we do GRC automation??

GRC can mean a lot of things. Automation can mean a lot of things. This post I'm going to explain how I think about GRC automation.

Jan 26, 2024 •

GRC Destroyer #4: 5 Stupid Third Party Risk Practices + The Solutions

I'm back on blog folks, it's 2024, and I have 35 absolute veteran subs that need to know what's going on with the most mundane tech space on the planet…

Jan 9, 2024 •

August 2023

GRC Destroyer #3: How should we be GRC'ing AI / LLM??? Things we can do today. Building an AI Compliance Program.

AI hype article! How can we be experts in risk assessing and auditing something we don't understand? What are the current regulations? I make my takes…

Aug 11, 2023 •

GRC Destroyer #2: What is Trust? Make SOC 2 public, you won't. & People I like!

Trust is really marketing + sales ops. Trust is an industry. Everyone loves Trust until it's time to do Trust. Trust needs to be done smarter.

Aug 4, 2023 •

July 2023

GRC Destroyer Drop 1: New SEC rules, GRC KPIs, Supply Chain Risk Mgmt, People I Like!

Drop 1 = Blog 1. I chat new SEC cybersecurity disclosure rules, GRC KPIs to take to the board, supply chain risk management...SO hot rn, and some people…

Jul 20, 2023 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts