Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters

What is GRC?

Governance, risk and compliance (GRC) refers to a company’s strategy for managing their organization's overall governance, enterprise risk management and compliance with regulations.

Investing in governance, risk, and compliance at your company can have many benefits: better risk analysis, faster decision making, consistent communications, and more efficient risk mitigation across the business.


Using a GRC tool allows you to create and coordinate policies and controls and automatically monitor them, creating efficiencies across your compliance efforts.

Additional resources you might like:

NIST
Event
Simplifying the NIST AI Risk Management Framework

Curious about managing risk in an AI-driven world? Join our live Q&A with security and compliance experts at Vanta and the Cognisys Group to explore the latest NIST AI Risk Management Framework (RMF) and its role in embedding trustworthiness into your company's AI usage.

Compliance
Event
Ask Me (Almost) Anything: AI & Compliance

What does AI mean for your company’s security compliance program? Join our session on 28 March 9 am AEDT where Matt Cooper, Privacy, Risk and Compliance Manager at Vanta, and Noam Rubin, Sr. Software Engineer at Vanta, will answer (almost) all your questions about AI and compliance.

Compliance
Event
Automating SOC 2 compliance & more

Join Vanta’s 45-minute live product demo on March 12 at 11 am PST where Devin and Natalie will walk you through the Vanta platform and show you how we automate 90% of the work for security and privacy frameworks, and help you move towards a state of continuous compliance.

Additional resources you might like:

NIST
Event
Simplifying the NIST AI Risk Management Framework

Curious about managing risk in an AI-driven world? Join our live Q&A with security and compliance experts at Vanta and the Cognisys Group to explore the latest NIST AI Risk Management Framework (RMF) and its role in embedding trustworthiness into your company's AI usage.

Compliance
Event
Ask Me (Almost) Anything: AI & Compliance

What does AI mean for your company’s security compliance program? Join our session on 28 March 9 am AEDT where Matt Cooper, Privacy, Risk and Compliance Manager at Vanta, and Noam Rubin, Sr. Software Engineer at Vanta, will answer (almost) all your questions about AI and compliance.

Compliance
Event
Automating SOC 2 compliance & more

Join Vanta’s 45-minute live product demo on March 12 at 11 am PST where Devin and Natalie will walk you through the Vanta platform and show you how we automate 90% of the work for security and privacy frameworks, and help you move towards a state of continuous compliance.

Product updates
Blog
Introducing NIST AI RMF: Monitor and mitigate AI risk

The NIST AI RMF is now available in beta, giving you a governance framework within Vanta to mitigate the risks associated using AI technologies.

Security
Event
Vanta in Action: Vendor Risk Management

Vendor security reviews can be manual and time-consuming, draining security teams of precious hours. Vanta’s Vendor Risk Management solution changes that, automating and streamlining security reviews so that you can spend less time on repetitive work and more time strengthening your security posture. Curious to see what it looks like?

Compliance
Event
Ask Me (Almost) Anything: Essential Eight

Join our Ask Me (Almost) Anything session on 27 February at 10 am AEDT, where Matt Cooper, Privacy, Risk & Compliance Manager at Vanta, will cover the basics and answer (almost) all your questions about Essential Eight.

Security
Event
Vanta in Action: Vendor Risk Management

Vendor security reviews can be manual and time-consuming, draining security teams of precious hours. Vanta’s Vendor Risk Management solution changes that, automating and streamlining security reviews so that you can spend less time on repetitive work and more time strengthening your security posture. Curious to see what it looks like?

Security
Event
Building security programs that reduce risk

In today’s evolving threat landscape, compliance is only the first step—resilience is the ultimate goal. That’s why Vanta and Huntress have teamed up to help you achieve true cybersecurity resilience.

Product updates
Blog
New in Vanta | January 2024

We closed out 2023 by rolling out more enhancements to the Vanta platform, including Bulk actions in Risk Register, 8 new integrations, GDPR with EU-US Data Privacy Framework, and more!

Get compliant and
build trust, fast.

Two wind turbines on a white background.
Get compliant and build trust,
fast.
Get started