What software do you use to manage your program?
Hello, this week I start a new position as director of cybersecurity and I'm trying to wrap my head around how I'm going to keep all the different aspects of a security program centralized for KPIs and other reporting so I can properly manage this. The company is around 400 people and although their IT isn't very mature they rely very heavily on msp cloud services which could take pressure off me for having to manage things more manually.
Does anyone use any sort of cloud or local software that essentially acts as a GRC of sorts with a risk register, framework mapping, crosswalks and other things that simply make your life managing an information security department easier.
Note that this is my first time leading infosec and I really want to make sure I get organized as early as possible before I start finding rabbit holes I never come out of.