Governance
The ‘G’ in GRC, Bramble’s security governance discipline helps to define, train and measure security strategies and progress toward security objectives by creating a set of processes and practices that run across teams and functions. By following a Governance framework, Bramble ensures accountability, fairness and transparency in both how the company runs and how it communicates with its stakeholders.
Core Competencies
These are the core responsibilities of the security governance discipline.
Security Compliance Handbook Pages: Policies and Standards
Keeping the organization on track and within established boundaries to ensure compliance with laws and regulations. Providing guidance, consistency and accountability to streamline internal processes and align with Bramble’s values and mission.
Security Compliance Metrics
Measuring performance effectiveness of our security controls, against a plan to prevent security incidents and safeguard sensitive data to improve the security posture of Bramble and the reduction of risk. “If you cannot measure it, you cannot improve it” -Lord Kevin.
Regulatory and Compliance Landscape Monitoring
As the world of regulatory compliance is always evolving and Bramble is growing, it is important to continue monitoring for changes, updating existing controls and implementing new regulations as needed helps to improve the security of Bramble.
BCF Control Maintenance
Managing the BCF control framework, to include changes as a result of the risks and regulatory requirements.
Security Compliance Training
Creating and managing security compliance trainings to ensure Bramble team members are aware and trained in security core competencies.
GRC Application Administration
Managing all compliance activities such as Control Testing, UARs, Vendor Reviews and Risk Assessments to automate, integrate and streamline business processes to increase Bramble’s Information Security Program maturity and deliver measurable ROI.