#TeamSimplyCyber #TeamSC WoooooWeeeee!!! GRC, BABY!! Looking forward to this one!

do you know if they are many fully remote GRC jobs? Or have you found most positions are in office?

I have a Bachelor of Commerce degree in Law. Completed the Google Cyber Security Certificate. This was great video to guide me into where or career path I can take. That is not very technical

I want to study CyberAccouting… doing research. 🧐. Is it worth it?

I created a fabric plugin for Obsidian, find it in the community plugin list under “unofficial fabric integration”

Great video & awesome conversation Steve! I'm fortunate to say I've successfully pivoted from helpdesk / customer service to GRC end of last year! My aim is now to do GRC work (perform assessments, audits, etc..) while still learning (foundational) technical knowledge. All the best to you!

Really inspiring to hear how people from diverse backgrounds, like accounting, can successfully transition into cybersecurity GRC roles.

Hey Steve. You did such a great job of providing a summary of risk management for businesses from the lens of the GRC practitioner. You also did an excellent job of conveying the mindset that should be underlying a GRC practitioner's approach to identifying, communicating, and managing risk. Keep doing what you're doing!

Love the championing of GRC within security. Such a crucial role for all businesses!

Thanks for your time Steve, really enjoyed this conversation! 🎉

Hi steve, hope you're doing well! I am an aspiring grc professional currently in university, I am clueless about the different roles in GRC, could you explain it a separate video?

How are you a cybersecurity specialist but you weren’t comfortable with the command line? That doesn’t even make sense.

This was a really good roadmap breakdown. Thank you!

For some reason, I cannot find the link to getting the GUI up and running. Grateful if you can share it.

Even I noticed that the description was created using Fabric. I loved it.

Could you show me how to use this feature sometime? Or point me towards a video? Daniel said there would be a nice gui available soon, but I think learning the basics of CLI would be a good idea.

It seems to me that Fabric is perfectly suited for Docker containerization.

Ok, so the job postings will name Isaca certs but job postings seem to always say “or other equivalent” so I decided I should (and I did) get the CCSK certification and open book or not it was difficult do pass. Note the questions where written (maybe Europeans communicate differently than US and therefore it adds a language disconnect?). Also, i took two udemy classes for cloud and got through the AWS practitioner certification previous to the CCSK and this was great because the CCSK material is in there and CCSK reaffirmed (shared responsibility model etc). The cloud knowledge was key in helping me get straight all the tech involved such as monitoring, backing up, least privilege, siem, edr… HINT: You missed software as a possible route such as becoming an admin for something such as Service now or Archer?? I feel that after the AWS cloud Practitioner and CCSK I was ready to see the practical workaday stuff and took the GRC masterclass which his stream of consciousness way of instructing was perfect to let me see how a seasoned GRC professional completes audits and risk assessment etc.

hi, thank you for your video. I am based in the UK, I have no experience in cyber security and/or IT, but I want to change careers and I believe i have transferable skills for GRC roles. Is this roadmap suitable for UK residents? if not, could you please advise on a road map for uK residents, thank you.

Hi I'm an attorney-at-law from Sri Lanka with an LLB from the UK and currently in my second year of a BSc in Cybersecurity. Could you recommend a career pathway for me to pursue in two years after I finish my degree? Additionally, could you suggest some relevant cybersecurity certifications?

Is this also valid for the CISSP exam in the UK?

Thanks a lot, i really appreciate, i am beginer, i have a doubt, when i reopen, what should i do , "fabric --gui" or anything else

just curious to know why did you not just transfer over into data analytics with your professional background and credentials

Very Valuable, thank you.

Hello sir! Can degrees like Bachelor's in Computer Science and Master's in Cybersecurity offer an experience waiver for certs such as CISA, CISM, CRISC, and CISSP?

Phenomenal

I was going to say I didn’t notice this pattern, but now looking I don’t see it. I wonder if it was removed?

I hope you keep making some form of these fabric videos, I’m learning things about it and Python through this learning experience 🙏

Hi there! I am just playing around with the GUI and its dope!! I was wondering if you have had problem with the adding a document feature? I wanted to have a pdf summarised but somehow nothing happens - not sure if I'm doing something wrong or its a bug.

Hey Steve, great work and great channel keep up the good work my friend.

Hey Steve. This is great! Love the work you're doing to empower students to be successful and transform!

Thanks again, great info. I've previously purchased the course. Is there a way I can pay for the notes separately?

Great info. I'm a new sub to your channel as I'm looking into transitioning into cybersecurity from a management background. You said you took Gerrys course over a year ago and I'm also subscribed to his channel. Did you take his course to transition into cybersecurity?

Cybersecurity KZbinr that’s never cloned a repo in the terminal. 2024 🎉

I look forward to crowdsourcing answers to these questions at GRC Study Hall tonight, with Chris Whitlock from the Simply Cyber community. Here's another one I received: "I want to pursue my career in GRC Auditing. But I am confused about the certifications in Auditing. I have knowledge of cybersecurity and penetration testing and also have experience in that. For Auditing we have iso27001 LA but if I go with PECB or BSI, then the certification is costly. But there is one more provider SKILLFRONT, which is cheaper. Can you tell me if I can go with skillfront certification or not."

Nice video,thanks for the video,after sec and Net+ Comptia and GRC certification,which roadmap Do you suggest for becoming Data loss prevention analyst?

I think this is where Windows really separates itself from the Mac. This process was so easy to follow and trouble-free. Absolutely nothing like the cluster-f*** that is Windows. And it's not the individual applications so much as trying to get them all to work together on a Windows OS. I became best friends with co-pilot for 3 days trying to get everything installed. It was a frustrating and miserable experience. The best I could get was "it worked, but probably want to fix it at some point before regular use". And that was just trying to get to "fabric -h", not even at the API level where it might be helpful. If you code and you have these tools already setup, you've probably been through this hell before and likely know which obstacles to avoid, but if you are not a coder, then you just run into one obstacle after another. Path statements being a huge hurdle (so many times one app doesn't realize where it is installed or the charming pipx problem with not wanting a space in the path name). This really seems like an awesome project, so I'm watching to see what others with Windows are doing, and doing some research now that I know where the biggest problems lie.

I know it's not security, but would having the CCNA cert and a little experience in networking be a not too difficult of a transition to GRC , instead of the networking career path? Sorry if the question is too vague.

is experience in cloud security important?

I currently want to pivot into grc cybersecurity.i am a banker right now what certifications can i do

D 0es the GUI works on windows ?

Good intel!

your presentation along with expression, is truly commendable. If you promote your video in your targeted audience and targeted locations, you can expect very good results day by day. It's proven as a digital marketer. Your videos need to have good organic traffic and engagement. However, after conducting a comprehensive analysis, I noticed there is room for improvement for your KZbin channel to get more visitors and subscribers. Your videos need to be well search engine optimized (SEO) for organic traffic and engagement.. Your video views are very low Compared to your competitors' channels. so you need to do organic video promotion So, what do you think about your channel issues? Or, what is your opinion about your channel issue? Or do you agree with me?

is CISA having more value than CISM ?

Thanks, great info.

Thank you for this wealth of information, I will be using it. I completed my Security+ training in February and afterwards completed a GRC mastery course by Unixguy on youtube. I was looking to take the IT Risk Fundamentals exam by ISACA as it seemed like a cert I qualified for as someone with no IT experience. Do you think it will be worthwhile to pursue?

That's one of the great things about security - there's always opportunity and room to grow! Just don't get overwhelmed...

I'm a developer and I've customize fabric with advanced data piping with BASH coupled with custom Fabric patterns I wrote, mind blowing results.

Nice work Steve. You are also a wonderful member of the UL community. Thank you!!

Great work, as always!