Governance Risk Compliance
Framework di controllo
A structured set of governance, risk, and compliance (GRC) policies, processes, and controls aligned to industry standards for managing and mitigating organizational risks.
Quick answer: A structured set of governance, risk, and compliance (GRC) policies, processes, and controls aligned to industry standards for managing and mitigating organizational risks.
This term page is part of the Protermify Cybersecurity glossary and is published as static HTML for fast indexing and clear language coverage.
Definition
A structured set of governance, risk, and compliance (GRC) policies, processes, and controls aligned to industry standards for managing and mitigating organizational risks.
Operational example
Our organization implemented a NIST-based control framework to meet compliance requirements and manage cyber risk holistically.
Localized term
Framework di controllo
Localized example
La nostra organizzazione ha implementato un framework di controllo basato su NIST per soddisfare i requisiti di conformità e gestire il rischio informatico in modo olistico.
Definition language
English reference definition
Source
ISO 27001, NIST Cybersecurity Framework, MITRE ATT&CK
Exam relevance
- CISSP
- CompTIA Security+
- CEH
Target audience
- SOC Analysts
- Security Engineers
- Incident Responders
