@neviarrawlinson
GRC | Process Improvement | Risk Management
IT GRC Manager
Nothing here yet.
Dec 29, 2025 · 3 min read · Shadow IT is not new. What is new is the scale, speed, and invisibility of shadow SaaS and shadow AI in modern environments. Today, teams can onboard a new SaaS tool or start using an AI assistant in minutes. No procurement. No security review. No go...
Join discussion
Dec 1, 2025 · 3 min read · Governance, Risk, and Compliance (GRC) is one of the fastest-growing and most impactful areas in the tech industry, but accessible, hands-on learning resources are still hard to find. That’s why I created the GRC Training Program, a free and open sou...
Join discussion
Nov 27, 2025 · 3 min read · Tracking compliance violations shouldn’t just live in spreadsheets and audit binders. If your team is already using Jira, you can automate compliance workflows and create real-time visibility into violations—no manual chasing required. This article w...
Join discussion
Aug 18, 2025 · 2 min read · When it comes to incident analysis and operational risk, most teams fall into two extremes — either overcomplicating the RCA process, or skipping it altogether. I work in IT Governance and Compliance, and I’ve seen firsthand how RCA reporting often b...
Join discussion
Aug 1, 2025 · 3 min read · Root Cause Analysis (RCA) is more than a post-incident checkbox. When done well, it uncovers not just what went wrong but why the systems in place allowed it to happen in the first place. Most teams focus solely on the technical root cause. But if yo...
Join discussion