Change Management: Build Your NIST CSF 2.0 Standard — Module 1 of 4

​Uncontrolled changes are one of the fastest ways to introduce cyber risk — yet most teams are still approving changes over Slack and hoping nothing breaks.

​This is Module 1 of the GRC Builder Series. In this two-hour virtual workshop, you will build a Change Management Standard from scratch — live, with templates you keep.

​This is not a lecture. You will build something real.

​

​What you'll build:

​— A Change Management Standard aligned to NIST CSF 2.0

​— An approval workflow with clear roles and risk criteria

​— A submission and review process your team will actually follow

​— A mapping showing how this standard satisfies ISO 27001 and SOC 2 simultaneously

​

​What we cover:

​— What counts as a change (standard, normal, and emergency types)

​— How to design your submission process — minimum information, channels, intake

​— Review and approval: who decides, what they look for, risk questions to ask — Implementation, validation, and back-out expectations

​— Communication and scheduling to reduce business disruption

​You leave with:

​A first-draft Change Management Standard ready to share with your IT lead, security team, and business owners the same day — plus workflow and checklist templates that plug into your existing ticketing system.

​Who this is for: CISOs, GRC managers, security leads, and compliance professionals building or improving a change management process. Also ideal for AI startups preparing for their first SOC 2 or enterprise security review.

​Module 1 of 4. Purchase the full GRC Builder Series bundle for $249 and attend all four sessions.

​Hosted by Meenu Chadha — founder of Cyber Advisory and fractional vCISO.