On this episode of Masters of Data, we sit down with Cassandra Mooseberger, Manager of Security Compliance at Sumo Logic, to unpack governance, risk, and compliance (GRC). Cass breaks down her three-pillar framework: governance and compliance, risk management, and trust. She reveals how GRC teams can flip from cost center to sales enabler through trust pages, automated questionnaires, and proactive support.
We explore practical strategies for working with engineering: listen first, understand before changing, and skip the “rip and replace” impulse. Cass walks through risk frameworks (treat, tolerate, transfer, terminate) and how AI is transforming evidence collection and questionnaire responses.
The bottom line? GRC wins when it builds bridges, not roadblocks.