https://community.isc2.org/t5/Governance-Risk-Compliance/Introduction-amp-Seeking-Guidance-on-GRC-Career-Path/m-p/78393#M1295 <P>Hello Folks,</P><P>I’m thrilled to join this community and eager to learn from professionals in the cybersecurity and GRC space.</P><P>I’m currently halfway through the ISC2 Certified in Cybersecurity (CC) Foundation program and preparing to book my exam soon. Since this program is freely offered, I wanted to hear your thoughts on its relevance to a GRC career:</P><UL><LI><P>With the CC certification, would I be well-positioned to start as a GRC analyst, or are there additional certifications, skills, or experience I should focus on?</P></LI><LI><P>What are the best entry paths into GRC, especially for someone looking to break into the field?</P></LI><LI><P>Are there any valuable resources, mentorship opportunities, or industry trends I should pay close attention to?</P></LI></UL><P>I’d appreciate any insights or advice you can share, and I look forward to engaging with and learning from this community.</P><P>Best regards,<BR />Murray Lichoro</P> Mon, 31 Mar 2025 17:18:48 GMT MurrayLichoro 2025-03-31T17:18:48Z https://community.isc2.org/t5/Governance-Risk-Compliance/Introduction-amp-Seeking-Guidance-on-GRC-Career-Path/m-p/78393#M1295 <P>Hello Folks,</P><P>I’m thrilled to join this community and eager to learn from professionals in the cybersecurity and GRC space.</P><P>I’m currently halfway through the ISC2 Certified in Cybersecurity (CC) Foundation program and preparing to book my exam soon. Since this program is freely offered, I wanted to hear your thoughts on its relevance to a GRC career:</P><UL><LI><P>With the CC certification, would I be well-positioned to start as a GRC analyst, or are there additional certifications, skills, or experience I should focus on?</P></LI><LI><P>What are the best entry paths into GRC, especially for someone looking to break into the field?</P></LI><LI><P>Are there any valuable resources, mentorship opportunities, or industry trends I should pay close attention to?</P></LI></UL><P>I’d appreciate any insights or advice you can share, and I look forward to engaging with and learning from this community.</P><P>Best regards,<BR />Murray Lichoro</P> Mon, 31 Mar 2025 17:18:48 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Introduction-amp-Seeking-Guidance-on-GRC-Career-Path/m-p/78393#M1295 MurrayLichoro 2025-03-31T17:18:48Z https://community.isc2.org/t5/Governance-Risk-Compliance/Introduction-amp-Seeking-Guidance-on-GRC-Career-Path/m-p/78450#M1296 <P>Hi Murray</P><P>&nbsp;</P><P>Good on you for working towards your certification.&nbsp;</P><P>&nbsp;</P><P>In my opinion, the CC certification certainly can put you onto the path as a GRC analyst but if I was hiring, I would be a bit more interested in your familiarity with whatever compliance/governance I was dealing with. Keep in mind, I would not expect you to be an expert, but I might want to know what your knowledge is regarding NIST or PCI DSS is (for example).</P><P>&nbsp;</P><P>So, I guess my recommendation is when you get to the point you are interviewing for a position, research the company. Try to get a handle on what compliance or governance they might be struggling with. Then research those models. At a minimum it shows you are willing to self-start and find answers.</P><P>&nbsp;</P><P>Hope that helps.</P><P>&nbsp;</P><P>Cheers</P><P>Tim</P> Wed, 02 Apr 2025 16:12:59 GMT https://community.isc2.org/t5/Governance-Risk-Compliance/Introduction-amp-Seeking-Guidance-on-GRC-Career-Path/m-p/78450#M1296 tsutherburg 2025-04-02T16:12:59Z