grcGlue

We do freelance GRC engineering work.ISO 27001, SOC 2, NIST CSF, HIPAA, GDPR,
CSA STAR, NIST 800-53, Essential Eight, ISM, PSPF ...
compliance is an acronym soup.
Add in frameworks, controls, requirements, evidence, monitoring, audits ...
Then there are 27, sorry - 32, sorry - 68 systems that need to be connected ...
And to top it off you've got localised or custom requirements to integrate with state, national and global/industry standards.
Oh, and we forgot, you have to import and update heaps of data from other places too, because not everything is out of the box connected.If that's all too much,
and you need someone independent but experienced and qualified
to help out occasionally ...
that's exactly what we are here for at grcGlue.We do freelance GRC engineering work -
regularly for customers, often for channel partners.
Sometimes even for vendors themselves when their
product support and customer success functions don't cover what is needed.We work with the major GRC and cybersecurity automation solutions
like Drata, Vanta, Scytale, SecureFrame, Sprinto etc.We understand controls, requirements, automated tests,
systems integration, APIs, risks, vendor-supply chain, data wrangling.We occasionally also work on specialist security and compliance projects
on public clouds like AWS, GCP and Azure.

• [email protected]

• LinkedIn
• GitHub
• Email