Beyond Vendor Risk: Real-Time GRC, AI, and Protecting App User Data - Jadee Hanson - CSP #221

Beyond Vendor Risk: Real-Time GRC, AI, and Protecting App User Data - Jadee Hanson - CSP #221

From CISO Stories Podcast (Audio) by Jessica Hoffman

February 9, 2026 · 27 min

About this episode

CISO Jadee Hanson discusses the importance of real-time governance, risk, and compliance in protecting app user data.

CISO Jadee Hanson shares how Vanta "drinks its own champagne," running on NIST CSF with quarterly baseline reviews and using Vanta's GRC platform to turn every release into live UAT for privacy, governance, and compliance. We rethink third-party management—why point-in-time risk scores are fading and how AI drives continuous monitoring and outcome-based assurance. Bottom line: don't just audit—instrument your controls and prove trust in real time. Visit https://cisostoriespodcast.com for all the latest episodes! Show Notes: https://cisostoriespodcast.com/csp-221

People in this episode

Host: Jessica Hoffman

Guest: Jadee Hanson

Topics covered

  • vendor risk
  • GRC
  • AI
  • data protection
  • compliance
  • third-party management

Keywords

  • vendor risk
  • real-time GRC
  • AI
  • data privacy
  • compliance
  • third-party management
  • NIST CSF

Mentioned in this episode

Organizations: Vanta, NIST

Products: GRC platform

More episodes of CISO Stories Podcast (Audio)

Explore listener stats, chart rankings, contacts and more on the CISO Stories Podcast (Audio) podcast page.