Video: Managing GRC with JupiterOne

by

George Tang has recorded a series of videos to show how JupiterOne can be used for GRC. In this session, George covers the usage of policies and procedures within J1 for compliance purposes. 

Not only as the foundation of your security program, but also your compliance program, you'll want to confirm you have a standardized set of policies and procedures for your organization. Within the Policies App, JupiterOne provides nearly three dozen standard security policies that are applicable to most organizations. Each of the policies has one or more procedures associated with each policy. 

During the initial J1 account setup, your admin was given access to the Policy Builder UI. Any changes to your company, officers within your company, or various security and technology tooling can be done through this interface. Updating this information will tailor your policies and procedures so that they are specific to your organization. Documentation for policies and procedures can be appended to, deleted or edited directly from within the J1 interface, including revision and tracking functionality. This documentation can be exported from JupiterOne as a pdf or zip file. 

Watch the video to see George step through the interface. If you like what you see, setup your free account and test it out yourself. 

 

 

For more videos in this series, plus a 15 part series on interrogating your AWS environments with JupiterOne, join us at Command Central for full access. 

George Tang
George Tang

I possess extensive senior information security leadership experience from serving hundreds of clients by assessing, designing, and implementing security + enterprise risk management programs. I assess + advise companies (from Fortune 5 to pre-seed startups) on their businesses', products', and environments’ security architectures. Additionally, I own a rare blend of technical subject matter expertise within the cloud technology space across the major hyperscale cloud service providers, i.e., AWS, Azure, GCP, specifically within the infrastructure security domain. Background: information security, cloud security, cyber security, governance/risk/compliance, assessments + advisory, risk management/risk assessment.

Keep Reading

Stop Stitching User Data Together. Get a Unified Identity Instead | JupiterOne
May 15, 2025
Blog
Stop Stitching User Data Together. Get a Unified Identity Instead.

Legacy IAM falls short. Identity first security uses continuous, contextual access controls to protect a decentralized world—far beyond the old perimeter.

Fast Track Vulnerability Prioritization with Orca Security and JupiterOne | JupiterOne
May 7, 2025
Blog
Fast Track Vulnerability Prioritization with Orca Security and JupiterOne

Unify cloud risk insights and asset context to prioritize and remediate vulnerabilities faster with the Orca Security and JupiterOne integration.

5 Cybersecurity risk assessments to secure digital assets | JupiterOne
March 20, 2025
Blog
5 Cybersecurity risk assessment frameworks to secure digital assets

Discover 5 essential cybersecurity risk assessment frameworks to protect your digital assets. Learn their benefits, key features, and how to choose the right one

15 Mar 2022
Blog
One line headline, one line headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud eiut.

15 Mar 2022
Blog
One line headline, one line headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud eiut.

15 Mar 2022
Blog
One line headline, one line headline

Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud eiut.