Tech Jobber Podcast

The Cybersecurity Career AI Can't Replace: Inside GRC With a Real CISO


Listen Later

GRC (Governance, Risk, and Compliance) is the most slept-on cybersecurity career in tech — and the one AI can't replace. 

In this episode, former Mount Sinai CISO and ISACA South Florida president Ryan Barras breaks down the GRC career path: how a GRC analyst rises to manager, director, deputy CISO, and CISO, what the day-to-day actually looks like, and why governance, risk, and compliance sits at the top of the security pyramid.

We cover how to get into cybersecurity through GRC, the certifications that matter (Security+, CISM, CISA, CISSP), why 70% of the job is communication, and how AI is reshaping third-party risk management, policy development, and AI governance — without killing the human in the loop.

 

If you're exploring cybersecurity jobs, a GRC career, or how to pivot into security without a traditional coding background, this is your blueprint.

⏱️ IN THIS EPISODE
00:00 Introduction to GRC and Its Importance
03:02 Career Path in GRC
05:47 Day-to-Day Responsibilities of a GRC Analyst
09:10 Skills for Progression in Cybersecurity
12:05 The Role of AI in GRC
15:02 Credentials and Hiring in GRC
18:14 Insights from Experience as CISO
21:07 Challenges in Different Industries
22:28 Identifying Organizational Gaps and Resource Constraints
24:30 AI Governance and Its Challenges
25:49 The Evolving Role of the CISO
28:29 Navigating Vendor Breaches
31:48 Current Job Market Trends in Cybersecurity
36:23 Networking and Mentorship in Security
38:41 Overrated Roles and Future Trends in Security
40:53 Final Tips for Aspiring Security Professionals


Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

...more
View all episodesView all episodes
Download on the App Store

Tech Jobber PodcastBy Chris Schwenk