james cockrell 9/20/25 james cockrell 9/20/25

STGRC Governance Playbook: Phase 1 – Foundation

Read More

james cockrell 9/19/25 james cockrell 9/19/25

Post 1: Why Cybersecurity Governance Matters

Read More

james cockrell 9/18/25 james cockrell 9/18/25

Post 2: Crafting a Core Information Security Policy

Read More

james cockrell 9/17/25 james cockrell 9/17/25

Post 3: Defining Cybersecurity Roles and Responsibilities

Read More

james cockrell 9/16/25 james cockrell 9/16/25

Post 4: Setting Risk Appetite and Tolerance

Read More

james cockrell 9/14/25 james cockrell 9/14/25

STGRC Governance Playbook: Phase 2 – People and Operations

Read More

james cockrell 9/13/25 james cockrell 9/13/25

Post 5: Embedding Security into HR Practices

Read More

james cockrell 9/12/25 james cockrell 9/12/25

Post 6: Keeping Policies Alive

Read More

james cockrell 9/11/25 james cockrell 9/11/25

Post 8: Handling Policy Exceptions Without Weakening Security

Read More

james cockrell 9/10/25 james cockrell 9/10/25

Post 7: Building a Training and Awareness Program That Actually Works

Read More

james cockrell 9/9/25 james cockrell 9/9/25

STGRC Governance Playbook: Phase 3 – Supply Chain and Oversight

Read More

james cockrell 9/8/25 james cockrell 9/8/25

Post 9: Third-Party Risk — Why Vendors Are Often Your Biggest Weakness

Read More

james cockrell 9/7/25 james cockrell 9/7/25

Post 10: Security Clauses Every Contract Should Contain

Read More

james cockrell 9/6/25 james cockrell 9/6/25

Post 11: Building an Incident Escalation Matrix That Includes Vendors

Read More

james cockrell 9/5/25 james cockrell 9/5/25

STGRC Governance Playbook: Phase 4 – Continuous Improvement and Board Engagement

Read More

james cockrell 9/4/25 james cockrell 9/4/25

Post 12: Measuring Cybersecurity Performance

Read More

james cockrell 9/3/25 james cockrell 9/3/25

Post 13: How to Report Cyber Risk to the Board

Read More

james cockrell 9/2/25 james cockrell 9/2/25

Post 14: Using a Risk Register to Drive Governance and Accountability

Read More

james cockrell 9/1/25 james cockrell 9/1/25

Post 15: Maturity Scorecards and Board Charters

Read More