Next-Gen GRC Bootcamp
We don't have any bootcamps scheduled at the moment.
AI, governance, and secure software practices are reshaping risk and compliance in modern organizations. This fast-track bootcamp equips participants with practical skills in AI governance, ISO 27001 implementation, and secure SDLC practices. Through real-world exercises and frameworks, participants learn how to embed compliance, controls, and secure software practices into daily operations.
Session: AI Governance Risk & Compliance
Krish
18+ Years of ExperienceKrish is a globally recognized Cloud Security and GRC expert with 18+ years of experience securing AWS, Azure, and GCP environments. He has supported 60+ enterprises and trained 1000+ professionals worldwide. A Microsoft Certified Trainer, he specializes in cloud governance, audit readiness, AI governance alignment, and enterprise-scale secure cloud architecture.
Session: ISO 27001 in Action: From Compliance Theory to Operational Reality
Abhishek
12+ Years of ExperienceAbhishek is a cybersecurity consultant with 12+ years of experience across GRC, VAPT, application security, and SOC operations. Having worked with 100+ organizations in 18+ countries, he bridges offensive security with governance and compliance. His expertise lies in integrating risk management, ISO 27001 controls, and secure development practices into real-world business environments.
Session: Application Security & Governance Alignment
Sanyam
10+ Years of ExperienceSanyam is a security architect and red-team specialist with 10+ years of experience in application security, threat hunting, DevSecOps, and SOC enablement. He has led advanced penetration testing and secure SDLC implementations across enterprise and cloud environments, bringing hands-on expertise in aligning technical security controls with governance and compliance objectives.
Module 1: GRC Foundations
- Governance, risk, and compliance through real business decisions
- Ownership, accountability, and escalation paths
- Policies and controls as decision enablers
Module 2: AI Foundations for GRC
- How AI systems actually make decisions
- Data, models, and automated outcomes
- Where human judgment must remain
Module 3: Identifying AI Risks
- What can go wrong in AI-driven decisions
- Data, model, operational, and misuse risks
- Generative AI risk patterns in organizations
- Unified Control Framework (UCF) concept
Module 4: Risk-Based AI Governance
- Classifying AI use cases by risk
- Matching governance intensity to risk level
- Human oversight and approval thresholds
Module 5: AI Controls & Guardrails
- Preventive, detective, and corrective controls for AI
- Acceptable use and guardrails for GenAI
- Monitoring, review, and intervention points
Module 6: AI Compliance & Accountability in Practice
- What regulators and auditors actually look for
- Evidence, documentation, and traceability
- Accountability when AI decisions cause harm
Module 7: Operationalizing AI GRC
- Embedding AI GRC into daily business workflows
- Handling AI incidents and exceptions
- Continuous improvement of AI governance
Module 1: The Risk-Based Approach
- Asset-Based vs. Scenario-Based Risk Assessment
- A mini-Risk Treatment Plan (RTP).
Module 2: Scoping and Statement of Applicability (SoA)
- The Art of Scoping
- The "Justification" Drill
Module 3: Evidence-Based Compliance
- Reviewing a sample of Policy.
- Identifying the specific evidence needed to prove the policy is being followed.
- Spotting "Common Pitfalls" in documentation
Module 4: Continuous Improvement & Metrics
- Internal Audit & Management Review
- Defining Meaningful KPIs
Module 1: Secure Software as a Business Responsibility
- Secure Software in the Enterprise Context
- Secure SDLC Foundations
- Decision-Based Security
Module 2: Security Requirements & Risk Foundations
- Translating Risk into Security Requirements
- Risk Identification in Software
- Risk Treatment in SDLC
Module 3: Architecture Security & Threat Modeling
- Secure Design Principles
- Trust Boundaries & Data Flows
- Threat Modeling Governance
- Threat Modelling:
- STRIDE
- PASTA
Module 4: Secure Coding & Security Testing Governance
- Secure Coding Foundations
- Security Testing Layers
- Vulnerability Management
Module 5: DevSecOps & Supply Chain Risk
- DevSecOps Integration
- Open Source & Third-Party Risk
Module 6: Accountability, Metrics & Continuous Improvement
- Evidence & Documentation
- Security Metrics
- Continuous Improvement
*Note: No access to recorded sessions will be shared for this bootcamp.
Interested in Joining the
Our advisor will contact you with event details, and exclusive offers!