Senior GRC Manager
Robyn Ferreira is a Senior GRC Manager with extensive experience in information security, risk management, and regulatory compliance. Her passion for information security was sparked during her time at the U.S. Embassy & Consulate General, where she served as an Information Security Assistant and gained hands-on experience in secure data handling and InfoSec protocols. At Scytale, Robyn leads a high-performing GRC team and works directly with organizations to meet strict compliance requirements across major frameworks like SOC 2, ISO 27001, and PCI DSS.
She is recognized for her ability to apply industry best practices, translate complex regulatory demands into clear, practical steps, and help companies build compliance programs that scale with their growth. Robyn holds a Bachelor’s degree in Political Science with a specialization in International Relations, a postgraduate qualification in Risk Management, and is an ISO 27001 Certified Lead Implementer.
This blog delves into how continuous monitoring enhances the effectiveness of security frameworks, like ISO 27001, NIST CSF and SOC 2.
In this blog, we’ll walk through best practices for getting audit-ready, from getting your documentation together to prepping your team.
A guide to compliance frameworks for startups, with everything you need to know about the most common frameworks and how they apply.
Let’s break down vulnerability scanning best practices, when and how to perform it, and how it differs according to organizational size.
Continuous Controls Monitoring (CCM) is a crucial aspect of GRC, helping firms improve their compliance, risk and controls management.
Fintech Risk and compliance ensures fair lending practices, transparent disclosure of conditions, and availability of dispute resolutions.
In this article, we’ll delve into the compliance aspects of privileged access management, with a focus on ISO 27001.
Compliance risk management is an essential, ongoing process required to monitor systems and bulletproof your security.
There is a new version of PCI DSS – PCI DSS version 4.0. Here are the top changes that you must be aware of to help your business navigate.
We’re evaluating ChatGPT regarding its impact on data privacy, cybersecurity and compliance. Let’s take a deep dive.
Navigate the 12 security requirements for PCI DSS compliance and how to implement them into your organization.
Discover whether or not your organization needs to conduct a PCI DSS audit and how you should prepare for it.
