Read time: 3 minutes

Taking a holistic view of cyber security, GRC

Governance, risk and compliance (GRC) is often an afterthought when it comes to cyber security as it is perceived as being the 'red tape' that hampers threat prevention efforts.

"Nothing could be farther from the truth," says Angela Mace, CRM and Events director at ITWeb. "The importance of GRC should never be underestimated, as GRC forms the basis on which organisations can build their cyber security programmes, and when done properly, can enable businesses to be more proactive in terms of incident response."

With this in mind, ITWeb is hosting GRC 2020, to be held on 25 February at The Forum, in Bryanston, which aims to help businesses of every size and type navigate the complex technological environment they find themselves in today.

She says GRC refers to an organisation's strategy for managing its overall governance, enterprise risk management and compliance, and keeping it all in line with current regulations.

[SIDEBAR]"Cyber security itself is made up of three elements: people, processes and technology. Most businesses place more emphasis on the 'technology' element, as it is probably the easiest to implement. However, all three elements are essential to any good security posture, and to incorporate the 'people' and 'processes' effectively, a GRC programme is needed."

According to Mace, to achieve this, an effective GRC programme is crucial, as it ensures a holistic approach to cyber security and GRC is taken, which will align IT with business objectives, while effectively managing risk and meeting compliance requirements.

Delegates attending the 2020 event will gain insight from industry experts, thought leaders and GRC practitioners on how to handle the complexities of today's increasingly complex environments. There will also be excellent opportunities for attendees to network with their peers, and explore all the latest GRC tools and solutions available on the market.