About the maintainer.
Jeff Posluns is a Chief Information Officer and enterprise technology executive with over thirty years of leadership, driving enterprise-scale transformations across operating models, ERP, data, and platform modernization for global organizations, with particular depth in enterprise AI. He builds AI capability from governance councils and lifecycle controls through to production AI and ML adoption across business workflows, aligning technology investment with business strategy and operational performance.
His leadership rests on a deep foundation in cybersecurity, risk, and governance, built over CIO, CISO, and consulting mandates in high-trust, multi-jurisdiction regulatory environments. That foundation keeps his technology decisions grounded in security-by-design, privacy, and operational resilience. He holds the CGEIT and CISSP certifications, has served as a director of an international non-profit, co-authored several books, and presented at industry and academic conferences since the late 1990s.
The GRC Library project is created and led by Jeff, and draws on the accumulated experience of a community of governance and security practitioners built up over more than two decades. The corpus is authored with substantial AI assistance and curated, reviewed, and edited by the maintainer, expanding rapidly under an AI-managed workflow he directs. He has led its transformation into an AI-managed corpus, distilling the lessons from that work into governance practices for AI-assisted teams.
Contributors and acknowledgements.
The GRC Library reflects knowledge, experience, and mentorship shared generously by practitioners whose roots in the field reach back to the early 2000s. It is also where people newer to GRC, and to careers in technology, join to learn the craft the right way: to frame problems, draft controls, treat edge cases, and herd cats.
The people below, seasoned hands and newcomers alike, are gratefully acknowledged for the instincts, war stories, judgement, and fresh thinking that shape this library.
If you are acknowledged here and would like a short professional bio shown alongside your name, you are warmly invited to submit a pull request adding it. The same welcome extends to any new contributor who would like to be acknowledged. See CONTRIBUTING.md for the contribution process.
- Benoit Dicaire @bhdicaire →
- Brent Thomas @brentrealbt →
- Brian J Adams @0xbja →
- Marc-Andre Heroux @maheroux →
- Nathan Alexander @naitachal →
- Philip Veilleux @menoche →
- Ryk Edelstein @fedelst →
With thanks also to the many other practitioners whose habits of thought and willingness to share what they learned in the trenches are woven throughout this corpus.