IEEE RRVS: Feb 2025 Meeting

Join us the IEEE RRVS CCS & IAS, WIE, YP, Life members chapter Meeting at 6pm.
TITLE: Advancing Compliance with the GRC Maturity Model: A Roadmap for Cybersecurity Leaders
Abstract:
Organizations face increasing regulatory, contractual, and legal compliance requirements, yet many struggle with fragmented processes and reactive approaches. The Governance, Risk, and Compliance (GRC) Maturity Model provides a structured framework to assess and enhance compliance programs, aligning them with strategic business objectives.
This session will guide cybersecurity professionals through the four levels of GRC maturity—traditional, initial, advanced, and optimal—illustrating how each stage impacts risk management and operational efficiency. Attendees will learn how to evaluate their organization's current maturity level, identify gaps, and implement targeted improvements to streamline compliance efforts.
Through real-world examples and practical strategies, this presentation will demonstrate how advancing GRC maturity enhances collaboration, reduces compliance risks, and supports long-term business resilience. Whether an organization is starting to formalize compliance processes or aiming for an optimized, risk-based approach, attendees will gain actionable insights to drive meaningful improvements.
About the Speaker:
Kayne McGladrey is a keynote speaker, senior IEEE member, and author of the GRC Maturity Model. With nearly three decades of experience in cybersecurity, he specializes in helping organizations navigate the intersection of governance, risk, and compliance (GRC) to build more secure and resilient businesses.
His work focuses on enabling CISOs, internal audit teams, and executives to align cybersecurity and business goals, communicate effectively with boards, and proactively address evolving global regulations. As a recognized thought leader, he’s spoken at events like Gartner IT Security & Risk, RSA, ISACA GRC, and the ISC2 Congress. His presentations are nuanced, accessible, and actionable, offering attendees practical guidance on current cybersecurity challenges and opportunities.
Throughout his career, he’s advised Fortune 500 and Global 1000 companies, leveraging his ability to bridge the gap between business and technology. He’s passionate about reducing organizational friction, improving GRC maturity, and inspiring underrepresented communities to pursue cybersecurity careers.
Learn more at https://kaynemcgladrey.com.
Agenda:
6:00 PM Gathering, Networking & Dinner
7:15 PM Presentation starts
8:30 PM Adjourn
Detailed Presentation Description:
Cybersecurity professionals operate in an environment where compliance is not just a regulatory obligation but a fundamental aspect of risk management. However, many organizations struggle with inconsistent documentation, siloed security and compliance initiatives, and a lack of integration between compliance efforts and business objectives. The Governance, Risk, and Compliance (GRC) Maturity Model offers a structured approach to assess and improve compliance processes, helping organizations transition from reactive, ad-hoc approaches to proactive, strategic compliance management.
This session will begin by introducing the four levels of GRC maturity:
– Traditional: Compliance activities are primarily manual and reactive, often handled in isolation with minimal integration into broader risk management efforts.
– Initial: Formalized compliance processes emerge, but they remain inconsistent and heavily dependent on individual expertise.
– Advanced: Compliance is standardized and integrated across the organization, supported by structured policies and proactive risk management.
– Optimal: Compliance is deeply embedded into business strategy, leveraging automation and data-driven insights for continuous improvement.
Attendees will learn how to assess their organization's current maturity level and recognize common obstacles that hinder progress, such as lack of leadership buy-in, resistance to change, and resource constraints. The discussion will cover best practices for moving up the maturity scale, including:
– Aligning compliance and security efforts with business strategy to ensure efficiency and long-term value.
– Standardizing processes to improve accuracy, reduce redundancies, and enhance collaboration.
– Leveraging automation and technology to streamline compliance monitoring and reporting.
Through case studies and industry insights, this session will provide cybersecurity professionals with a roadmap for advancing GRC maturity. By the end of the presentation, attendees will have a clear understanding of how to enhance their compliance programs, mitigate risks more effectively, and position their organizations for sustained regulatory success.
Three Lessons Learned / Educational Objectives:
– Understanding Maturity Levels – Attendees will learn how the four levels of the GRC Maturity Model impact compliance, risk management, and business operations.
– Identifying and Addressing Gaps – Participants will gain practical strategies for assessing their organization's current maturity level and overcoming common barriers to improvement.
– Enhancing Compliance Efficiency – The session will highlight how organizations can integrate compliance into strategic decision-making, leverage automation, and foster a proactive compliance culture.
This presentation will equip cybersecurity professionals with the knowledge and tools needed to advance their organization's compliance maturity, ultimately reducing risk exposure and improving operational efficiency.
Virtual: https://events.vtools.ieee.org/m/461592