GRC
Governance, Risk, and Compliance
GRC is the integrated framework organizations use to align cybersecurity strategy with business goals, manage risk, and satisfy regulatory requirements. It unifies policies, processes, and technology under one discipline.
Como é usado em cibersegurança
Cybersecurity teams use GRC programs to map controls to regulatory mandates and track risk across the organization. GRC analysts build policy libraries, run control assessments, and report risk posture to leadership. Platforms like RSA Archer, ServiceNow GRC, and OneTrust automate much of this workflow.
Termo relacionado no glossário: governance risk and compliance
As definições são explicações originais escritas para fins de desenvolvimento profissional. Para definições técnicas autoritativas, consulte NIST, ISO ou o órgão de normalização correspondente.