sueden.social

kaasweThe good thing working with security is I don’t have to evolve in my role, the same slides I presented 20+ years ago still are valid…That was irony, big time, sadly but trueBasic security hygiene is still left out in every major company, why?One dangerous trend is that before containers, devops order a server from server team, network team assigned VLAN and IP, firewall team opening what was required as a minimum. Now, devops team controls the tenant deploys hundreds of containers in seconds, allowing inbound Internet access with no other security than Microsoft components (if we are in Azure) and we all know that standard components are Not enough security. This is a major problem in several ways 1. Too much privledge and authorities in one person, often with not enough knowledge 2. Lack of Asset management, after a while no one knows how many functions exists where, what they do, or how they interact. 3. Excessive energy consumption, despite this was one selling point, But there are light in the tunnel, we can regain control. The tools are there, it’s “only” a matter of structure and process, bringing me back to the start of this article and what my slides contained and still contains.Keep it up out there, and don’t give up even when it feels hopeless <a href="https://swecyb.com/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#cybersecurity</a> <a href="https://swecyb.com/tags/grc" class="mention hashtag" rel="nofollow noopener" target="_blank">#grc</a>

bsidesnovaLive! Laugh! Love to Hack! at <a href="https://mastodon.social/tags/BSidesNoVa" class="mention hashtag" rel="nofollow noopener" target="_blank">#BSidesNoVa</a> in Arlington, Virginia Oct 10-11!Submit a talk or workshop no later than 23:59 on Friday, August 15th. Like. As in. Tomorrow. OK. <a href="https://sessionize.com/bsidesnova-2025/" rel="nofollow noopener" translate="no" target="_blank">https://sessionize.com/bsidesnova-2025/</a> Share how you Live! <a href="https://mastodon.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a>, Laugh! at inefficient <a href="https://mastodon.social/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> documentation, Love to Hack! all the things!

PhilGood lord, <a href="https://fed.bajsicki.com/tags/Vanta" rel="nofollow noopener" target="_blank">#Vanta</a> is so limited in features. My self-designed system (using <a href="https://fed.bajsicki.com/tags/orgmode" rel="nofollow noopener" target="_blank">#orgmode</a> and <a href="https://fed.bajsicki.com/tags/orgql" rel="nofollow noopener" target="_blank">#orgql</a> and <a href="https://fed.bajsicki.com/tags/orgsuperlink" rel="nofollow noopener" target="_blank">#orgsuperlink</a>) can handle inventory, shadow it (via API calls to SSO vendor), risk register, regulations, compliance tracking and a bunch more. And it can work as a database for lookups. Granted it's a little bit more demanding (a few keypresses instead of clicking on the website) but it's infinitely expandable and fully integrated across its modules (<a href="https://fed.bajsicki.com/tags/orgroam" rel="nofollow noopener" target="_blank">#orgroam</a>). Vanta, on the other hand, does come with very simplified stuff. For SOC2, I see only 67 pre-defined risk scenarios, which are so vague as to be meaningless. What do you mean "personnel misused assets and data is lost?" What assets? What data? Lost in what way? If I tried to mitigate this risk (properly) I'd spend weeks ensuring everything is backed up and then testing those backup systems. That's unrealistic. But that's the kind of feel-good vagueness one can expect from vendors. They don't sell to infosec, they sell to management. My baseline at the moment is >200 basic risks that are split per-system, with specific steps for mitigation (and if the same risk occurs in different systems, that's a different risk since the outcomes will be different and need to be handled appropriately.) So... why does Vanta exist, exactly? Sure it can pull data in near-real time from some systems (a lot of our systems literally can't hook into it)... but that's a non-issue anyway if you just maintain your inventory a little bit each week. It's not like massive infra changes happen often. Given that, the only answer I can think of is to pull wool over their customer's eyes and give them the impression of compliance, the impression of less effort, while sweeping the real security implications under the rug. You don't get security by being vague. <a href="https://fed.bajsicki.com/tags/burnout" rel="nofollow noopener" target="_blank">#burnout</a> <a href="https://fed.bajsicki.com/tags/infosec" rel="nofollow noopener" target="_blank">#infosec</a> <a href="https://fed.bajsicki.com/tags/imsotired" rel="nofollow noopener" target="_blank">#imsotired</a> <a href="https://fed.bajsicki.com/tags/compliance" rel="nofollow noopener" target="_blank">#compliance</a> <a href="https://fed.bajsicki.com/tags/grc" rel="nofollow noopener" target="_blank">#grc</a>

Tanya Janca | SheHacksPurple :verified: :verified:Great offer alert! My friend Gerald Auger from SimpleCyber has a <a href="https://infosec.exchange/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> course "GRC Jumpstart: GRC Foundations in Modern Cybersecurity" and he gave me permission to share his 'Pay What You Can' Code: GRCJUMPSTARTZERO ! <a href="https://twp.ai/4iptH4" rel="nofollow noopener" translate="no" target="_blank">https://twp.ai/4iptH4</a>PS If you can afford to pay the $20, please pay.

bsidesnovaLead a 4-hour or 8-hour <a href="https://mastodon.social/tags/Workshop" class="mention hashtag" rel="nofollow noopener" target="_blank">#Workshop</a> at our Friday, October 10th event at GMU-Mason Square in Arlington, Virginia! <a href="https://mastodon.social/tags/BSidesNoVA" class="mention hashtag" rel="nofollow noopener" target="_blank">#BSidesNoVA</a> is the premier <a href="https://mastodon.social/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a> & <a href="https://mastodon.social/tags/DataPrivacy" class="mention hashtag" rel="nofollow noopener" target="_blank">#DataPrivacy</a> event in Northern Virginia, don't miss your opportunity to share your knowledge, passion, and enthusiasm for topics like <a href="https://mastodon.social/tags/CTI" class="mention hashtag" rel="nofollow noopener" target="_blank">#CTI</a>, <a href="https://mastodon.social/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#Hacking</a>, <a href="https://mastodon.social/tags/Networking" class="mention hashtag" rel="nofollow noopener" target="_blank">#Networking</a>, <a href="https://mastodon.social/tags/Coding" class="mention hashtag" rel="nofollow noopener" target="_blank">#Coding</a>, <a href="https://mastodon.social/tags/OSINT" class="mention hashtag" rel="nofollow noopener" target="_blank">#OSINT</a>, <a href="https://mastodon.social/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a>, and more.Get it together no later than 23:59 on Friday, Aug 18th <a href="https://sessionize.com/bsidesnova-2025/" rel="nofollow noopener" translate="no" target="_blank">https://sessionize.com/bsidesnova-2025/</a>

Sean Martin 🎙️✨:verified_paw: :donor:What if your GRC platform could coach your team instead of just tracking tasks?Join Sean Martin, CISSP and Marco Ciappelli as they talk with Anders Søborg and M. Humphrey (MBA) about how E-V-E GRC is helping teams automate control evaluations, simplify third-party assessments, and build evidence-based dashboards that executives actually trust.Real AI for real problems.📺 Watch the full conversation: <a href="https://youtu.be/-YYDh1wgpUw" rel="nofollow noopener" translate="no" target="_blank">https://youtu.be/-YYDh1wgpUw</a>🎧 Listen to the podcast: <a href="https://brand-stories-podcast.simplecast.com/episodes/solving-grc-fatigue-how-ai-is-helping-compliance-teams-do-more-with-less-an-e-v-e-grc-brand-origin-story-with-anders-sborg-co-founder-of-eve-and-mark-humphrey" rel="nofollow noopener" translate="no" target="_blank">https://brand-stories-podcast.simplecast.com/episodes/solving-grc-fatigue-how-ai-is-helping-compliance-teams-do-more-with-less-an-e-v-e-grc-brand-origin-story-with-anders-sborg-co-founder-of-eve-and-mark-humphrey</a>📖 Read the blog: <a href="https://www.itspmagazine.com/their-stories/solving-grc-fatigue-how-ai-is-helping-compliance-teams-do-more-with-less-an-e-v-e-grc-brand-origin-story-with-anders-sborg-co-founder-of-eve-and-mark-humphrey" rel="nofollow noopener" translate="no" target="_blank">https://www.itspmagazine.com/their-stories/solving-grc-fatigue-how-ai-is-helping-compliance-teams-do-more-with-less-an-e-v-e-grc-brand-origin-story-with-anders-sborg-co-founder-of-eve-and-mark-humphrey</a>➤ Command Compliance: <a href="https://itspm.ag/e-v-e-i1ml" rel="nofollow noopener" translate="no" target="_blank">https://itspm.ag/e-v-e-i1ml</a>➤ Learn more about E-V-E GRC: <a href="https://itspm.ag/eve-grc-99" rel="nofollow noopener" translate="no" target="_blank">https://itspm.ag/eve-grc-99</a>➤ Follow E-V-E GRC on ITSPmagazine: <a href="https://www.itspmagazine.com/directory/evegrc" rel="nofollow noopener" translate="no" target="_blank">https://www.itspmagazine.com/directory/evegrc</a><a href="https://infosec.exchange/tags/grc" class="mention hashtag" rel="nofollow noopener" target="_blank">#grc</a> <a href="https://infosec.exchange/tags/ai" class="mention hashtag" rel="nofollow noopener" target="_blank">#ai</a> <a href="https://infosec.exchange/tags/compliance" class="mention hashtag" rel="nofollow noopener" target="_blank">#compliance</a> <a href="https://infosec.exchange/tags/audit" class="mention hashtag" rel="nofollow noopener" target="_blank">#audit</a> <a href="https://infosec.exchange/tags/automation" class="mention hashtag" rel="nofollow noopener" target="_blank">#automation</a>

Blacks In Cybersecurity HQ :verified:🍎 Meet our 2025 Class of Subject Matter Ambassadors!🗓️ Friday August 9, 2024 at 6:00 PM | LVCC 322 - 324<a href="https://infosec.exchange/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/SME" class="mention hashtag" rel="nofollow noopener" target="_blank">#SME</a> <a href="https://infosec.exchange/tags/BlacksInCyber" class="mention hashtag" rel="nofollow noopener" target="_blank">#BlacksInCyber</a> <a href="https://infosec.exchange/tags/LitLikeBIC" class="mention hashtag" rel="nofollow noopener" target="_blank">#LitLikeBIC</a> <a href="https://infosec.exchange/tags/BlacksInCybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#BlacksInCybersecurity</a> <a href="https://infosec.exchange/tags/BIC_Village" class="mention hashtag" rel="nofollow noopener" target="_blank">#BIC_Village</a> <a href="https://infosec.exchange/tags/AlaafiaState" class="mention hashtag" rel="nofollow noopener" target="_blank">#AlaafiaState</a> <a href="https://infosec.exchange/tags/DEFCON33" class="mention hashtag" rel="nofollow noopener" target="_blank">#DEFCON33</a>

january1073Cheating Permitted? German Federal Court of Justice Rules on ‘Action Replay II’ <a href="https://medium.com/@january1073/cheating-permitted-german-federal-court-of-justice-rules-on-action-replay-ii-b1e8e051107c" rel="nofollow noopener" translate="no" target="_blank">https://medium.com/@january1073/cheating-permitted-german-federal-court-of-justice-rules-on-action-replay-ii-b1e8e051107c</a> <a href="https://infosec.exchange/tags/cheating" class="mention hashtag" rel="nofollow noopener" target="_blank">#cheating</a> <a href="https://infosec.exchange/tags/software" class="mention hashtag" rel="nofollow noopener" target="_blank">#software</a> <a href="https://infosec.exchange/tags/grc" class="mention hashtag" rel="nofollow noopener" target="_blank">#grc</a>

Tanya Janca | SheHacksPurple :verified: :verified:Great offer alert! My friend Gerald Auger from SimpleCyber has a <a href="https://infosec.exchange/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> course "GRC Jumpstart: GRC Foundations in Modern Cybersecurity" and he gave me permission to share his 'Pay What You Can' Code: GRCJUMPSTARTZERO ! <a href="https://twp.ai/4ioINY" rel="nofollow noopener" translate="no" target="_blank">https://twp.ai/4ioINY</a>PS If you can afford to pay the $20, please pay.

XTROVERSO.COMDutch entrepreneurs: the Supreme Court just ruled that “I didn’t know” won’t save you from VAT fines. Ignorance = gross negligence. Read before it hits you. <a href="https://www.xtroverso.com/blog/governance-11/vat-fines-are-coming-for-you-513" rel="nofollow noopener" translate="no" target="_blank">https://www.xtroverso.com/blog/governance-11/vat-fines-are-coming-for-you-513</a> <a href="https://mastodon.social/tags/business" class="mention hashtag" rel="nofollow noopener" target="_blank">#business</a> <a href="https://mastodon.social/tags/markets" class="mention hashtag" rel="nofollow noopener" target="_blank">#markets</a> <a href="https://mastodon.social/tags/government" class="mention hashtag" rel="nofollow noopener" target="_blank">#government</a> <a href="https://mastodon.social/tags/fine" class="mention hashtag" rel="nofollow noopener" target="_blank">#fine</a> <a href="https://mastodon.social/tags/tax" class="mention hashtag" rel="nofollow noopener" target="_blank">#tax</a> <a href="https://mastodon.social/tags/fiscal" class="mention hashtag" rel="nofollow noopener" target="_blank">#fiscal</a> <a href="https://mastodon.social/tags/fiscality" class="mention hashtag" rel="nofollow noopener" target="_blank">#fiscality</a> <a href="https://mastodon.social/tags/netherlands" class="mention hashtag" rel="nofollow noopener" target="_blank">#netherlands</a> <a href="https://mastodon.social/tags/dutch" class="mention hashtag" rel="nofollow noopener" target="_blank">#dutch</a> <a href="https://mastodon.social/tags/court" class="mention hashtag" rel="nofollow noopener" target="_blank">#court</a> <a href="https://mastodon.social/tags/law" class="mention hashtag" rel="nofollow noopener" target="_blank">#law</a> <a href="https://mastodon.social/tags/sentence" class="mention hashtag" rel="nofollow noopener" target="_blank">#sentence</a> <a href="https://mastodon.social/tags/vat" class="mention hashtag" rel="nofollow noopener" target="_blank">#vat</a> <a href="https://mastodon.social/tags/money" class="mention hashtag" rel="nofollow noopener" target="_blank">#money</a> <a href="https://mastodon.social/tags/governance" class="mention hashtag" rel="nofollow noopener" target="_blank">#governance</a> <a href="https://mastodon.social/tags/compliance" class="mention hashtag" rel="nofollow noopener" target="_blank">#compliance</a> <a href="https://mastodon.social/tags/risk" class="mention hashtag" rel="nofollow noopener" target="_blank">#risk</a> <a href="https://mastodon.social/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> <a href="https://mastodon.social/tags/xtroverso" class="mention hashtag" rel="nofollow noopener" target="_blank">#xtroverso</a> <a href="https://mastodon.social/tags/philosophy" class="mention hashtag" rel="nofollow noopener" target="_blank">#philosophy</a> <a href="https://mastodon.social/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#news</a>

Morpheus Being<a href="https://aus.social/tags/Energy" class="mention hashtag" rel="nofollow noopener" target="_blank">#Energy</a> <a href="https://aus.social/tags/RenewableEnergy" class="mention hashtag" rel="nofollow noopener" target="_blank">#RenewableEnergy</a> <a href="https://aus.social/tags/Australia" class="mention hashtag" rel="nofollow noopener" target="_blank">#Australia</a> <a href="https://aus.social/tags/DarlingDowns" class="mention hashtag" rel="nofollow noopener" target="_blank">#DarlingDowns</a> <a href="https://aus.social/tags/Beebo" class="mention hashtag" rel="nofollow noopener" target="_blank">#Beebo</a> <a href="https://aus.social/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a>Bring it on. What a boost for local jobs!<a href="https://reneweconomy.com.au/china-solar-giant-jinko-seeks-federal-approval-for-massive-pv-and-battery-project-in-queensland/" rel="nofollow noopener" translate="no" target="_blank">https://reneweconomy.com.au/china-solar-giant-jinko-seeks-federal-approval-for-massive-pv-and-battery-project-in-queensland/</a>

J. R. DePriest :verified_trans: :donor: :Moopsy: :EA DATA. SF:On a call at work with our GRC folks and he dropped some wisdom.<blockquote>If you have a policy without enforcement, what you have is a suggestion.</blockquote>The moment was ruined when people on my team started extolling the benefits of negative reinforcement and downplaying positive.Dude; there's room for both.<a href="https://infosec.exchange/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfoSec</a>

Paul Reynolds :verified:Today’s risks don’t sit in silos - so why is your risk management strategy still acting like they do?From AI and cyber threats to third-party dependencies and cloud misconfigurations, risks in 2025 are interconnected, fast-moving, and deeply complex. Yet too many organisations still treat them like isolated events. That’s not just outdated - it’s dangerous.In our latest post, we explore:👽 Why modelling risk relationships matters more than ever 👽 How scenario planning is evolving with AI and quantum-powered analytics 👽 The shift from compliance to strategic risk management 👽 And how advanced GRC platforms and third-party risk tools are transforming ERM into a true business enablerWhether you're building resilience or unlocking opportunity, risk strategy in 2025 must be integrated, contextual, and forward-looking.Ready to upgrade your enterprise risk posture?Read the full post here: <a href="https://paulreynolds.uk/top-enterprise-risk-management-trends/" rel="nofollow noopener" translate="no" target="_blank">https://paulreynolds.uk/top-enterprise-risk-management-trends/</a> or get in touch for support on ISO 27001, cyber assessments, and GRC frameworks that actually work.<a href="https://infosec.exchange/tags/ERM" class="mention hashtag" rel="nofollow noopener" target="_blank">#ERM</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/RiskManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#RiskManagement</a> <a href="https://infosec.exchange/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/ISO27001" class="mention hashtag" rel="nofollow noopener" target="_blank">#ISO27001</a> <a href="https://infosec.exchange/tags/ThirdPartyRisk" class="mention hashtag" rel="nofollow noopener" target="_blank">#ThirdPartyRisk</a> <a href="https://infosec.exchange/tags/ProtectWhatMatters" class="mention hashtag" rel="nofollow noopener" target="_blank">#ProtectWhatMatters</a>

Sean Martin 🎙️✨:verified_paw: :donor:What’s Heating Up Before Black Hat? 🔥 AI agents, cloud risks, GRC shifts, identity chaos… or something else entirely?Join us live as we place our bets on the 4 trends that will shape this year’s hacker conference—and invite you to do the same.🧠 Insight from leading voices 🎤 Hosted by <a href="https://infosec.exchange/@seanmartin" class="u-url mention" rel="nofollow noopener" target="_blank">@seanmartin</a> & <a href="https://infosec.exchange/@Marcociappelli" class="u-url mention" rel="nofollow noopener" target="_blank">@Marcociappelli</a> 📅 Streamed live on July 31st, before Black Hat kicks off👉 Register now: <a href="https://www.crowdcast.io/c/whats-heating-up-before-black-hat-2025-place-your-bet-on-the-top-trends-set-to-shake-up-this-years-hacker-conference" rel="nofollow noopener" translate="no" target="_blank">https://www.crowdcast.io/c/whats-heating-up-before-black-hat-2025-place-your-bet-on-the-top-trends-set-to-shake-up-this-years-hacker-conference</a><a href="https://infosec.exchange/tags/BlackHat2025" class="mention hashtag" rel="nofollow noopener" target="_blank">#BlackHat2025</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/AgenticAI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AgenticAI</a> <a href="https://infosec.exchange/tags/SupplyChainSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#SupplyChainSecurity</a> <a href="https://infosec.exchange/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#AppSec</a> <a href="https://infosec.exchange/tags/IdentitySecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#IdentitySecurity</a> <a href="https://infosec.exchange/tags/ITSPmagazine" class="mention hashtag" rel="nofollow noopener" target="_blank">#ITSPmagazine</a> <a href="https://infosec.exchange/tags/InfosecEvents" class="mention hashtag" rel="nofollow noopener" target="_blank">#InfosecEvents</a>

Tanya Janca | SheHacksPurple :verified: :verified:Great offer alert! My friend Gerald Auger from SimpleCyber has a <a href="https://infosec.exchange/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> course "GRC Jumpstart: GRC Foundations in Modern Cybersecurity" and he gave me permission to share his 'Pay What You Can' Code: GRCJUMPSTARTZERO ! <a href="https://twp.ai/4iomTb" rel="nofollow noopener" translate="no" target="_blank">https://twp.ai/4iomTb</a>PS If you can afford to pay the $20, please pay.

Morpheus Being<a href="https://aus.social/tags/qldpol" class="mention hashtag" rel="nofollow noopener" target="_blank">#qldpol</a> <a href="https://aus.social/tags/Springborg" class="mention hashtag" rel="nofollow noopener" target="_blank">#Springborg</a> <a href="https://aus.social/tags/LyingNastyParasites" class="mention hashtag" rel="nofollow noopener" target="_blank">#LyingNastyParasites</a> <a href="https://aus.social/tags/GRC" class="mention hashtag" rel="nofollow noopener" target="_blank">#GRC</a> <a href="https://aus.social/tags/Goondiwindi" class="mention hashtag" rel="nofollow noopener" target="_blank">#Goondiwindi</a><a href="https://www.abc.net.au/news/2025-07-11/qld-lawrence-springborg-steps-down-as-lnp-president/105522160?utm_source=abc_news_app&utm_medium=content_shared&utm_campaign=abc_news_app&utm_content=other" rel="nofollow noopener" translate="no" target="_blank">https://www.abc.net.au/news/2025-07-11/qld-lawrence-springborg-steps-down-as-lnp-president/105522160?utm_source=abc_news_app&utm_medium=content_shared&utm_campaign=abc_news_app&utm_content=other</a>

theOmegabitAudits suck. Is it time to move that workflow more left, yet? <a href="https://infosec.exchange/tags/grc" class="mention hashtag" rel="nofollow noopener" target="_blank">#grc</a><a href="https://github.com/ajdehn/AWS-Audit-Playbook" rel="nofollow noopener" translate="no" target="_blank">https://github.com/ajdehn/AWS-Audit-Playbook</a>

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#grc