From security audits to privacy consulting: Building a GRC practice | Will Sweeney

Cyber Work
21/07/2025 42 min
From security audits to privacy consulting: Building a GRC practice | Will Sweeney

Listen "From security audits to privacy consulting: Building a GRC practice | Will Sweeney"

Descargar episodio

Episode Synopsis

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcastWill Sweeney, founding and managing partner of Zaviant, joins the Cyber Work Podcast to discuss the evolving landscape of data privacy and GRC (governance, risk and compliance). With experience overseeing complex information security audits for Fortune 100 companies, Will shares insights on everything from the key differences between security auditing and implementation to whether privacy regulatory frameworks will continue multiplying or begin consolidating. He offers practical advice for GRC aspirants, emphasizing the importance of understanding core security processes rather than getting lost in framework structures. Will also discusses the challenges of starting a consultancy practice and provides valuable career guidance for those looking to transition into the data privacy and compliance space.0:00 - Intro1:15 - Cybersecurity Salary Guide promo2:30 - Will Sweeney and his early tech background6:45 - Building his first high school website9:20 - Career pivot from IT to data privacy and GRC12:15 - Audit vs. implementation: Understanding the difference16:30 - Starting Zaviant and the GDPR opportunity20:45 - Current challenges in data privacy compliance24:10 - Common security gaps companies overlook28:30 - Breaking into GRC: Skills and career advice32:45 - Starting a consultancy: Hidden challenges36:20 - The future of privacy regulations and AI impact40:15 - Career advice for help desk professionals41:30 - Closing thoughtsView Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcastAbout InfosecInfosec's mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ's security awareness training. Learn more at infosecinstitute.com.

More episodes of the podcast Cyber Work

From stealing servers to saving lives: Working in red teaming | Jim Broome 18/08/2025
Why Hackers Are Stealing Encrypted Data Now To Decrypt Later | David Close 11/08/2025
Working in ransomware response, investigation and recovery | John Price 28/07/2025
From "dead-end job" to CEO: Building an IT consulting business | John Hansman 14/07/2025
From FBI Cyber Agent to Police Tech Innovator | Andre McGregor 16/06/2025
Build your own pentesting tools and master red teaming tactics | Ed Williams 02/06/2025
The Future is Cloud: Master Azure Certs for Cybersecurity Success | Guest Wilfredo Lanz 12/05/2025
Cloud career roadmap: Azure Administrator vs Security Engineer certs | Guest Wilfredo Lanz 05/05/2025
When AI Goes Rogue: API Security in the Age of AI Agents | Guest Sam Chehab 21/04/2025
Why Medical Device Security Needs Transparency: The SBOM Revolution | Guest Ken Zalevsky 14/04/2025
© 2003-2025 ZARZA | AHEAD OF OUR TIME
privacy policy
In God we trust In God we trust
PreSales Questions? Click Here
or call our toll-free line at +1-888-5002068 Miami, Florida, USA