June 5, 2021

What’s it like being on the GRC side of cyber security?

Wanting transition from a more technical role to a GRC role, i’ve been job hunting and finally been offered a position as an “IS security risk analyst”.

In my previous role i was the sole consultant with a security background. I did everything from risk assessment to implementing/testing controls. This role seems to be just risk assessment / analysis but deeper level. More auditing work as well (i was always on the other side of this).

My question is for those who are already in or transitioned into this type of role.

Is it stressful?

How much on-call / overtime / emergency calls do you do?

Any tips for someone who was a security jack of all trades to now in a more specialized GRC role?

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.