Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).
☆1,021Sep 7, 2025Updated 8 months ago
Alternatives and similar repositories for awesome-security-GRC
Users that are interested in awesome-security-GRC are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A minimalist risk management program!☆152Aug 10, 2022Updated 3 years ago
- A hands-on, real-world GRC lab series built for beginners and curious pros alike. No PDFs. No gatekeeping. Just practical labs for unders…☆114Nov 6, 2025Updated 6 months ago
- OWASP Foundation Web Respository☆80May 2, 2026Updated last week
- Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking☆667Apr 16, 2026Updated 3 weeks ago
- CISO Assistant is a one-stop-shop GRC platform for Risk Management, AppSec, Compliance & Audit, TPRM, Privacy, and Reporting. It supports…☆4,020Updated this week
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Config files for my GitHub profile.☆479Apr 24, 2026Updated 2 weeks ago
- An open source Governance Risk Compliance (GRC) solution for corporates and government☆38Jul 10, 2017Updated 8 years ago
- The GitHub repo for the GRC Engineering For AWS Book. Everything You Need to Become a GRC Engineer in the Cloud GRC engineering bridges t…☆39Jul 25, 2025Updated 9 months ago
- This GRC Portfolio Hub is my initiative to empower GRC professionals in showcasing their practical AWS GRC engineering implementation ski…☆49Aug 6, 2025Updated 9 months ago
- An open source, self-service GRC tool to automate security assessments and compliance.☆211Dec 10, 2024Updated last year
- SANS has developed a set of information security policy templates. These are free to use and fully customizable to your company's IT secu…☆58Oct 22, 2021Updated 4 years ago
- ☁️Haven GRC - easier governance, risk, and compliance 👨⚕️👮♀️🦸♀️🕵️♀️👩🔬☆105Jun 14, 2021Updated 4 years ago
- collection of materials and resources I use to teach computer security classes☆12Jun 25, 2021Updated 4 years ago
- Useful templates and working document for implementing ISO 27001 - ISMS☆223Mar 30, 2026Updated last month
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆14Jan 2, 2024Updated 2 years ago
- ☆62Apr 12, 2026Updated 3 weeks ago
- A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.☆345Feb 19, 2026Updated 2 months ago
- compliance assessment and POA&M management for CMMC/NIST 800-171A☆112Jan 2, 2025Updated last year
- GRC (Governance, Risk and Compliance) Software, to manage risks and controls. It is based in best practices and helps organizations to ma…☆29Mar 8, 2023Updated 3 years ago
- ☆643Mar 11, 2025Updated last year
- This GitHub page shows the CISO Tradecraft Podcast broken down by Topic☆145Jan 2, 2026Updated 4 months ago
- Maturity models help integrate traditionally separate organizational functions, set process improvement goals and priorities, provide gui…☆266Jul 5, 2025Updated 10 months ago
- hyperGRC is a lightweight, in-browser tool for managing compliance-as-code repositories in OpenControl format.☆29Jan 19, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- These are files that a new CISO or someone introducing security to an organization can leverage to bridge the gap between security and th…☆77Oct 7, 2025Updated 7 months ago
- GOAL: Incident Response Playbooks Mapped to MITRE Attack Tactics and Techniques. [Contributors Friendly]☆1,559Jul 28, 2024Updated last year
- ☆1,055Apr 12, 2026Updated 3 weeks ago
- A platform to automate and orchestrate security rules for governance, risk and compliance, and continuous assurance.☆41Apr 9, 2026Updated last month
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆496Apr 3, 2024Updated 2 years ago
- Curated list of links, references, books videos, tutorials (Free or Paid), Exploit, CTFs, Hacking Practices etc. which are related to AWS…☆1,556Apr 3, 2026Updated last month
- This repository documents my hands on experience and assignments during the Columbia University Cybersecurity Program. It includes home l…☆14Aug 10, 2023Updated 2 years ago
- Management tool for the information security management system / Outil de gestion du système de management de la sécurité de l'informatio…☆349Apr 23, 2026Updated 2 weeks ago
- Machine readable cybersecurity compliance standards library for Python, starting with FISMA and NIST Risk Management Framework☆63Apr 15, 2020Updated 6 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A curated knowledge base to build, run and mature a SOC (including CSIRT).☆1,719Apr 29, 2026Updated last week
- This repository supports the blog site www.cloudauditcontrols.com.☆15Dec 3, 2025Updated 5 months ago
- Incident Response Methodologies 2022☆1,119Apr 11, 2025Updated last year
- An automation framework for deploying Microsoft Sentinel environments using pipelines. This project combines infrastructure-as-code (Bice…☆44Apr 29, 2026Updated last week
- An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)☆132Jul 14, 2024Updated last year
- A curated list of tools for incident response☆9,009Jul 18, 2024Updated last year
- Repository for the Open Information Security Risk Universe☆64Jul 10, 2022Updated 3 years ago