A collection of GRC projects focusing on NIST CSF, ISO 27001. Includes risk assessments, policy as a code samples and compliance automation scripts for modern security governance