GRC & Me

Tune in as we’re joined by industry leaders from BCU, BillGo, and Centier Bank that share their unique perspective and insight on the future of the financial industry.

Hosted by Meghan Maneval, panelists Stephenie Southard, Steve Gasiamis, and Donald Rome dive into the key trends and challenges shaping the financial landscape in 2025. From navigating regulatory changes and ensuring security resilience, to exploring the rise of d...

In this episode, Google Continuous Assurance Engineering Director, Vikram Khare, and Senior Software Engineering Manager, Eric Zhang, discuss implementing continuous assurance, with tips for getting started and real-world examples through the lines of defense. They cover the challenges of keeping up with evolving controls and risks, as well as the reality of automating controls only to need updates again. Tune in to hear best pract...

In this episode, host Meghan Maneval is joined by Google’s Product Management Lead for Cybersecurity Compliance Products, Ruchi Khurana, to explore the current state of AI and automation in the GRC industry. They dive into key considerations for the role of AI and ML in the GRC domain, including critical success criteria and how to prioritize AI-related risks across departments. They also discuss the key challenges in the GRC indus...

In the season 8 finale, guest host Jade Trombetta is joined by Salim Alameddin, Senior Vice President at Crossroads Strategies, LLC to discuss key cybersecurity and AI regulation trends and new administration objectives that will shape 2025. They explore a variety of topics from the evolving landscape of cybersecurity, including the growing threat of geopolitical cyberattacks, to AI and compliance under the new administration. They...

In this episode, host Meghan Maneval is joined by LogicGate’s Chief Customer Officer, Jen Renna, to discuss the evolution of customer success at LogicGate. They dive into what success looks like from both a customer and internal perspective, and why people are at the heart of it all. The discussion also covers key considerations when selecting a GRC platform, what customers can expect from LogicGate moving forward, proving that GRC...

Join us in this episode as host Meghan Maneval and Michael Rasmussen - GRC Analyst & Pundit at GRC 20/20 Research, LLC - discuss vendor risk management and the differences between third, fourth, and fifth-party risks. They discuss essential regulations and standards in the financial and banking sectors, highlighting how they vary by organization maturity. As well as best practices for effectively building and managing a compreh...

In this episode, we’re excited to explore the ever-changing landscape of banking compliance. We’ll cover best practices for staying audit-ready amidst constantly evolving regulations. The discussion will address compliance requirements, from NCUA mandates to state-specific privacy laws, PCI 4.0, and more. We’ll also talk about AI in banking along with third-party and vendor risks. This insightful conversation will highlight both th...

Optimizing Risk: GRC is no longer a cost center - it’s a business enabler

Guests: LogicGate CEO, Matt Kunkel and CISO, Nick Kathmann

Historically GRC was viewed as one line in a budget sheet, but that is rapidly changing. GRC practitioners are elevating their programs with tools and technologies that aggregate data and story-tell situational risk, security, compliance changes and more so businesses can make risk-based decisions t...

Switching from traditional risk analysis methods like ordinal lists or red-yellow-and-green charts to more modern approaches like risk quantification requires a paradigm shift in how you think about measuring risk, but the increased accuracy, specificity, and reliability you’ll gain by doing so pays dividends.

On this episode of GRC & Me, Netflix’s Tony Martin-Vegue join LogicGate’s Chris Clarke to explore the best ways to navig...

They say it takes a thief to catch a thief, so why not a hacker to catch a hacker? 

That was the premise behind Ted Harrington’s Independent Security Evaluators, a company dedicated to poking holes into other companies’ cyber defenses — for the right reasons, of course. On this episode of GRC & Me, Ted takes LogicGate’s Chris Clarke on a journey down the benevolent hacker’s rabbit hole, where they discuss:

• The difference...

Few careers involve managing as much risk as one where you’re responsible for launching humans riding gigantic rockets into outer space. That’s exactly what Barrios Technology Chief Strategy Officer Ginger Kerrick did during her three-decade career working for NASA.

On this episode of GRC & Me, Ginger joins LogicGate’s Chris Clarke to discuss methods for developing methodical, standardized thought processes for risk decision-mak...

One of the most high-profile risk events of the last year was the swift collapse of Silicon Valley Bank and other regional banks amid spiking interest rates. Part of the problem? The lack of a complete, comprehensive view of the risks these banks were facing — in particular, liquidity risk.

Allstate Canada's Chief Risk Officer Jason Wang has spent his career assessing and analyzing risk in the financial services space, dedicated to ...

When doing business with the federal government and its myriad agencies, organizations are bound to run into plenty of mandates, regulations, and other requirements. Navigating them all can cause a headache for even the most detail-oriented compliance managers.On this episode of GRC & Me, Chris Clarke is joined by Intel Federal’s Compliance Program Manager, John Griffin. Griffin draws on his decades of experience in federal con...

Oftentimes, cyber risk teams are viewed as reactive “audit police,” swooping into projects to flag risks and forcing changes at key points. This approach can generate a resentful — even toxic — risk culture. There’s a better way to build healthier risk cultures: Taking a more collaborative, embedded approach to cyber risk management by positioning cyber risk leaders as advisors and partners, working side-by-side with project teams ...

Cybersecurity programs involve lots of moving parts, and they only grow more complex over time as technology becomes more advanced and cyber threats become more numerous and sophisticated. Cyber risk quantification can be a crucial tool for keeping up with shifting cybersecurity landscapes.On this episode of GRC & Me, Chris Clarke is joined by Protiviti’s Daniel Stone, Director, and Tim Kelly, Associate Director, to discuss how...

With information and cybersecurity incidents growing in frequency and severity, regulators in the European Union are hard at work devising new rules designed to incentivize organizations to harden their cyber defenses.

On this episode of GRC & Me, Megan Brown sits down with Wizz Air’s Andras Szabolcs, Cyber Risk Expert, and Peter Szigetvari, Operational Risk Expert, to break down the similarities and differences between two of t...

In just a few months, artificial intelligence went from a fringe technology to full-speed ahead with the public release of ChatGPT. This fascinating technology has the potential to revolutionize how we automate our businesses, but there are numerous reasons to give pause before integrating it into your organization’s operations. On this episode of GRC & Me, Dorian Cougias, Co-Founder and CEO of United Compliance Framework and C...