who am i ?
I'm Jon Bierer, Senior Compliance Consultant for C3

Jon Bierer

Jon Bierer serves as a Senior Compliance Consultant for C3. Jon is an experienced security professional with over 20 years of experience in security management, information assurance, personnel security, physical security, industrial security, and cybersecurity. He has held numerous certifications and badges including CISM, CGRC, RP, CCP, and CCA, as well as ISOC and SFPC certifications. He brings a unique combination of policy, technology, and mission expertise from a range of experiences with the U.S. Army, Defense Security Service (DSS), NASA, the Defense Industrial Base, and the commercial sector. He has also served in leadership and operational roles in the U.S. and abroad.

Jon holds a Bachelor of Arts in Criminal Justice from American Military University and an

Associate of Applied Science in Intelligence Operations from Cochise College. He has been invited to speak on security and cybersecurity at PBExpo and BSides, as well as NCMS, DSS, and U.S. Army events.

  • Introduction to GRC

    In this presentation, "Introduction to GRC," participants are introduced to the fundamental concepts and principles of Governance, Risk, and Compliance. The presentation begins by covering the critical role GRC plays in modern organizations, emphasizing its function as an integrated approach to managing governance, risk management, and regulatory compliance. Next, the presentation explores the component of Governance, emphasizing the importance of establishing clear structures, roles, and responsibilities within an organization. It delves into the significance of aligning governance with the organization's strategic objectives and fostering a culture of accountability and transparency. The focus then shifts to Risk Management, covering the process of identifying, assessing, and mitigating risks that organizations face in their operations. The presentation emphasizes the need for risk-based decision-making and highlights the tools and methodologies commonly employed in risk assessment. The final segment dives into Compliance, shedding light on the complex landscape of regulations, standards, and industry requirements that organizations must adhere to. The presentation underscores the potential legal and financial repercussions of non-compliance and introduces strategies for monitoring and ensuring adherence. Overall, this presentation equips participants with a foundational understanding of GRC, emphasizing its crucial role in maintaining organizational integrity, resilience, and legal compliance in an ever-evolving business environment.

connect with NAC-ISSA
Twitter Feed