Agentic AI Reshapes GRC with Autonomous Controls Monitoring

Imagine a future where AI doesn't just automate tasks, but empowers GRC practitioners to focus on high-impact decisions - that's the promise of agentic AI, which brings autonomous controls monitoring to the table. By combining autonomy, context, and multi-step execution, agentic tools can revolutionize the way we…

https://osintsights.com/agentic-ai-reshapes-grc-with-autonomous-controls-monitoring?utm_source=mastodon&utm_medium=social

#AgenticAi #Grc #AutonomousControls #GovernanceRiskAndCompliance #ArtificialIntelligence

Hot take after 20 years in compliance: most of it is a copy-paste problem pretending to be a governance problem.

Controls live in Word. Evidence lives in screenshots. The mapping between a control and what actually proves it lives in someone's head — and walks out the door when they leave.

We built ours OSCAL-native: machine-readable controls, diffable in git, queryable by an agent. Compliance as code, not as PDF.

#infosec #compliance #OSCAL #GRC

Serie MAR (GRC)

Serie: Mar
País: GRC
Fab/Dist: TENCO, EXIN
Año: 1984

Más info en: https://refstente.com/id/1316

#TENTE #RefsTENTE #TENCO #EXIN #Serie_Mar #GRC #Año_1984 #Serie #Referencias #Modelos #Piezas #Manual_Instrucciones #Ref_Serie_MAR_(GRC)

woo-hoo. I had my first checkup with a gynaecologist post-bottom surgery (yes, trans women with vaginas need to go to a gynaecologist regularly).

She said my lavuvu looks good! That they did good work!

She did say it looks dry, so 🤷‍♀️

though I was only the 2nd trans patient she had. and she had some questions.

Breast cancer scan scheduled for September.

#trans #srs #grc #surgery #transsurgery

Unicis has signed the SUSE Open Letter for Europe's Digital Future 🇪🇺

We're joining 100+ European tech organisations calling on the EU to require public sector bodies to assess open source alternatives before procuring proprietary software.

Our take: open source in public infrastructure isn't idealism — it's resilience policy.

Read why we signed 👇 https://www.unicis.tech/blog/unicis-joins-suse-eu-tech-sovereignty-letter/?mtm_campaign=eu-tech-sovereignty-letter&mtm_source=Mastodon

#DigitalSovereignty #OpenSource #EUPolicy #GRC #Compliance

Unicis Platform June 2026 is live 🎉

What shipped:
→ Domain Health Row on the dashboard — live status across Data Protection, Cybersecurity & Risk
→ Direction B design system — consistent UI across every module
→ WCAG 2.1 AA accessibility throughout
→ Annual billing with 20% discount
→ Italian, Japanese & Portuguese support + in-app language switcher

Full changelog: https://shorturl.at/0PSnG
Blog post: https://shorturl.at/SAM1Z

#OpenSource #GRC #GDPR #NIS2 #Compliance #Privacy

Hey #GRC peeps, does NIST have a standard that specifically applies to the strength of passwords/passcodes/PINs used for device unlock?

Reading https://pages.nist.gov/800-63-4/sp800-63b/authenticators/#password

The requirements in this section apply to centrally verified passwords that are used as independent authentication factors and sent over an authenticated protected channel to the verifier. Passwords used locally as an activation factor for a multi-factor authenticator (e.g., an unlock PIN) are referred to as activation secrets and discussed in Sec. 3.2.10. In contrast to centrally verified passwords, activation secrets (similar to the unlock passwords or PINs on many devices) are not sent to the verifier and instead used locally to gain access to the authentication secret.

My interpretation of the above is that where the password or PIN used to unlock a device is not centrally verified, the requirements set forth in 3.1.1 don’t apply. As the “unlock passwords … many devices” are a separate but similar category to 3.2.10, it would seem the requirements there also don’t apply. That seems to leave the “unlock passwords” in a grey area, where absent a standard, organizations are free to make their own decisions without falling outside the standard.

New UNICIS Platform Release:
✅ Kanban board & recurring tasks
✅ Task import templates
✅ Bulk control linking
✅ Prioritization
✅ RoPA/TIA/PIA/RM import/export OpenDocument support
✅ Emojis & reactions

https://web3.unicis.tech/blog/task-improvement
#GRC #Compliance #RiskManagement #Privacy

What is shadow governance? Explore the hidden decision-making networks that shape organizations beyond policies, frameworks, org charts, and formal authority.

https://esmaelnexusx.com/post/the-map-and-the-territory-defines-shadow-governance-its-three-properties-why-it-matters-now

#Leadership #Governance #Management #OrganizationalCulture #DecisionMaking #Strategy #TechnologyLeadership #RiskManagement #GRC #NIST #ISO27001 #BusinessLeadership #DigitalTransformation #ManagementTheory #CybersecurityLeadership