CLASS-LLC

CLASS-LLC is excited to partner with the City of Fairfield, California and Solano County to present the 2025 Fairfield Cybersecurity Summit on 28-29 October 2025 at Rancho Solano Golf Course. Join us for two engaging days of conversation about how "Duty of Care in a Digital Age" affects risk governance and cybersecurity program management in government and commercial organizations. Learn more here: https://lnkd.in/e3A_Kauq Complete your registration here: https://lnkd.in/e4sHaY8A Featured Speakers: Dr. Bob Mark, Mike Jerbic, Malcolm Harkins, Gregory P. Silberman, CIPP/US, CISSP, Edward Bombita, Savita Chaudhary, Eudora Fleischman, Dawn Haghighi, Donald E. Hester, Daniel Pietragallo (AIGP, CIPP/US, FIP), Keyaan Williams, and Chris Yadon, MPA.

This Thursday (14 AUG), people from across the nation will gather in Richmond, VA to attend the sold-out Virginia Information Security (IS) Conference. CLASS-LLC will be represented by Keyaan Williams, who has the privilege of providing a keynote. His presentation is designed to inspire participants to move beyond GRC and leverage classical governance to transform the security and resilience of modern organizations. The conversation is valuable because the correct application of governance to enterprise cybersecurity risk is essential for helping organizations of all sizes and industries operate within risk boundaries formally documented and established by the leadership of the company. While everyone cannot gather in Richmond this week, everyone can join an important discussion based on highlights from the presentation: [𝟭.] 𝗟𝗲𝘁’𝘀 𝘀𝘁𝗼𝗽 𝘂𝘀𝗶𝗻𝗴 𝗚𝗥𝗖 𝗶𝗻𝗰𝗼𝗿𝗿𝗲𝗰𝘁𝗹𝘆. Governance, Risk, and Compliance (GRC) is a concept originally created by the Open Compliance and Ethics Group (OCEG) in 2002. The objective of GRC was to produce “principled performance” by integrating capabilities related to governance, management, and assurance of performance, risk, and compliance activities. GRC is a corporate leadership function. It is not an entry-level activity, or a compliance-based approach claiming to perform governance because results are reported to management. [𝟮.] 𝗚𝗼𝘃𝗲𝗿𝗻𝗮𝗻𝗰𝗲 𝗶𝘀 𝗱𝗶𝗿𝗲𝗰𝘁𝗲𝗱 𝗳𝗿𝗼𝗺 𝘁𝗵𝗲 𝘁𝗼𝗽 𝗼𝗳 𝘁𝗵𝗲 𝗼𝗿𝗴𝗮𝗻𝗶𝘇𝗮𝘁𝗶𝗼𝗻. When used within the corporate governance framework provided by ISO 37000, risk governance addresses the institutions, rulemaking, processes, and mechanisms by which decisions about risks are taken and implemented within an organization. Risk governance shifts the focus of enterprise risk management from tactical, compliance-driven approaches to strategic, executive-level decisions about what risks to pursue and what risks to avoid as the company seeks to achieve business outcomes and objectives. [𝟯.] 𝗥𝗶𝘀𝗸 𝗮𝗽𝗽𝗲𝘁𝗶𝘁𝗲 𝗶𝘀 𝗮 𝗴𝗼𝘃𝗲𝗿𝗻𝗮𝗻𝗰𝗲 𝘁𝗼𝗼𝗹. Defining and enforcing the acceptable boundaries of risk within a company is a leadership responsibility. Active involvement of company leadership in risk governance and enforcement of risk appetite ensures risks are understood within the context of the company. It ensures the company honors its commitment to stakeholders while also considering how key risks intersect with the corporate strategy, oversight, accountability, and value generation.

In case you missed it, CLASS-LLC has the privilege of featuring Wes Knight as the instructor for the Risk Governance Roadshow that will be featured at the Tools and Technology conference hosted by the ISSA Metro Atlanta Chapter. This executive leadership seminar provides an overview of important concepts relevant to business, legal, and technology leaders who contribute to governance of enterprise cybersecurity risk within their organizations. Key learning objectives: ✅ Board Governance Principles ✅ Integrating Cybersecurity and Enterprise Risk Management (ERM) ✅ Putting the Company in a Legally Defensible Position ✅ Corporate Response after a Cyber or Privacy Incident In addition to great networking and collaboration in the Roadshow, participants will also join a special luncheon focused on strategic security investments moderated by Lenny Levy and featuring Will DeMar, Stephen Gay, Kevin Heineman, and Jorge L. Perez.  Learn more and sign up here: https://lnkd.in/e58VZswF

CLASS-LLC is honored to sponsor and support the "Security Tools & Technologies - Going Beyond Sales Presentations" program presented by Metro Atlanta ISSA on Friday, May 16th. The event features workshops and sessions from Splunk, SailPoint, and FortifyData, along with a local edition of our own "Risk Governance Roadshow." There will also be a CISO panel discussion with CISOs from Kennesaw State University, Ameris Bank, Mandarin Oriental, and Lyric! Continental breakfast and lunch will be provided. 7 CPE credits are available. Discount codes are available for ISSA members, ISACA members, CSA members, Cyversity members, Infragard members, and WiCyS members. Learn more and register here: https://lnkd.in/e3ywxmUA