Rise of the Machines // using machine learning with GRC

DerbyCon 9.0 - Finish Line

Presented by: Justin Leapline, Rick Yocum
Date: Sunday September 08, 2019
Time: 09:00 - 09:45
Location: Track 2

It’s amazing how many frameworks and regulatory controls are infiltrating our lives. From contractual and governmental regulatory oversight, there are many obligations that need to be followed. So how do you effectively melt them together to find out what is overlapped controls and what unique to comply with on the every changing landscape. We will be exploring the methodology we went through to align several frameworks for unique requirements, including the use ofNatural Language Processing (NPL) and Machine Learning (ML) to align language and controls from various sources automatically. We will also be exploring the impact this could have in the GRC space and how these technologies could alleviate the strain that multiple disparate frameworks can place on business compliance programs.

Justin Leapline

Both Justin Leapline and Rick Yocum are experienced governance program managers, leading a number of companies to optimize their security posture. This includes including working regulatory and contractual compliance within the information security realm, security program management, various regulatory/compliance initiatives, and general governance practices and frameworks. Both Rick and Justin currently work at TrustedSec within the Advisory group.

Rick Yocum

Both Justin Leapline and Rick Yocum are experienced governance program managers, leading a number of companies to optimize their security posture. This includes including working regulatory and contractual compliance within the information security realm, security program management, various regulatory/compliance initiatives, and general governance practices and frameworks. Both Rick and Justin currently work at TrustedSec within the Advisory group.


KhanFu - Mobile schedules for INFOSEC conferences.
Mobile interface | Alternate Formats