Where the GRC community shapes what’s next

Today's GRC teams must cover more frameworks, manage more risks, and implement controls in more atomised environments. GRC Engineering can help manage the complexity. Learn how to use engineering problem-solving techniques to solve common challenges and build stronger connections across your teams.

AI is transforming security and compliance, creating new risks and demanding powerful defenses. Join XBOW Founder and CEO Oege de Moor and Vanta CPO Jeremy Epling to explore how AI enhances governance, risk, and compliance to predict threats, strengthen assurance, and build resilient security programs.

From courtside to checkout screens, trust makes or breaks the fan experience. Join leaders from the Warriors, Valkyries, and Vanta to explore how security and experience teams create a safe and fun environment online and in-person.

Questionnaires are the backbone of TPRM. But for organizations with thousands of vendors, they lead to inefficiencies and busy work. It’s time to rethink third-party risk from a customer and vendor perspective. Enter AI, tiered risk scoring, and more proactive ways to demonstrate security maturity.

Trust is now a business metric. Hear from Snowflake and Coalfire on how leading security teams prove trust, drive revenue, and shape the next wave of enterprise trust programs.

GRC is often seen as a box-checking exercise. But a strong program goes beyond audits—it accelerates sales cycles, builds customer trust, and frees engineering teams to focus on innovation. Learn how to position GRC as a business enabler, with controls and treatment plans that address what matters.

How do you calculate ROI of things that never happened? The key is aligning how you communicate value to business risk. Having developed and now leading the GRC at Duolingo, Mandy has built a framework for doing just that in a way that impacts teams, boards, and executives.

Compliance teams face pressure to develop AI governance strategies that mitigate risk and protect information. But many don’t know where to start. Learn practical strategies to understand risk, generate buy-in from stakeholders, and build a team of partners to stay ahead of evolving threats.

AI brings new security and privacy threats to the table, but no GRC specialist can afford to fear or ignore it. Learn how to stay ahead of the evolving AI landscape, while also unlocking opportunities to provide secure AI to your organization and create a competitive advantage.

AI agents promise enormous impact—but only if they’re built on a foundation of trust and security. Learn how Sierra’s framework brings together risk coverage, guardrails, lifecycle best practices, and transparency principles to make safe, responsible AI adoption possible.

“Move fast and break things” doesn’t cut it anymore. Winning startups pair rapid innovation with strong security from day one—turning trust into a growth accelerator and a lasting competitive edge. Join this session for a series of stories from the startup trenches.

Teams want faster access to new tools, executives expect deeper supply chain assurance, and customers demand more visibility. Yet building a Risk Management program that monitors all facets of risk is challenging. Learn how Ironclad’s own Fish Fisher has scaled risk management into business impact.