GOVERNANCE, RISK & COMPLIANCE

The Brick House: What’s Next in GRC — Turning Quantified Risk into Action

July 21, 2026 | 12:00pm EST

Cyber risk management is entering a new phase. As organizations adopt FAIR-based quantification models, AI-driven workflows and more integrated governance strategies, the challenge is no longer simply collecting risk data—it’s turning that information into faster, smarter business decisions.

Today’s security and risk leaders are under growing pressure to demonstrate measurable outcomes, communicate cyber risk in business terms and support operational resilience across complex environments. At the same time, AI and automation are rapidly reshaping how organizations approach governance, reporting and risk analysis.

In this edition of The Brick House, GuidePoint Security experts explore how modern GRC programs are evolving beyond traditional compliance and reporting models to support decision-making at scale. The discussion will examine how organizations are operationalizing cyber risk quantification, where AI is beginning to influence governance workflows and why many programs still struggle to translate risk insights into meaningful action.

Planned discussion:

  • How FAIR-based risk quantification is changing executive and board conversations today
  • Where AI can improve GRC workflows—and where human judgment remains essential
  • The operational challenges of scaling cyber risk management across modern enterprises
  • Lessons organizations are learning from evolving third-party, identity and data risks
  • Practical strategies building resilient, decision-driven GRC programs

Join Gary Brickhouse, CISO at GuidePoint Security and a panel of cybersecurity, governance and risk leaders for a practical discussion on how organizations are adapting cyber risk management for the realities of AI, automation and rapidly changing business environments.

Panelists:

  • Ben Moreland, Practice Director, GRC
  • Emily O’Carroll, Field CISO, SW
  • Sujeet Bambawale, Field CISO, NW
  • Tim Amerson, Field CISO, FED

 


About The Brick House:

The Brick House is a monthly panel discussion with GuidePoint Security’s CISO, Gary Brickhouse and his expert guests examining the hottest topics in cybersecurity. No talking heads here, just honest conversations amongst security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

Linkedin X-twitter Facebook

Register Now

EVENT SPEAKERS

Learn from Cybersecurity Experts

Gary Brickhouse is the Chief Information Security Officer (CISO) at GuidePoint Security, where he leads the company’s information security program and manages the GRC Services consulting practice. His expertise spans compliance, data privacy and securing technologies, honed through previous roles at The Walt Disney Company and Publix Super Markets. A frequent industry speaker, Gary holds a CISSP certification, ITIL v3 Expert credential and a Bachelor of Science from Florida Southern College.

Ben Moreland
Practice Director, GRC

Ben Moreland

 
Ben Moreland is the Practice Director for GRC at GuidePoint Security, where he helps organizations strengthen cyber risk management, governance and resilience programs. With experience spanning enterprise security, risk management and advisory consulting, Ben works closely with clients on cyber risk quantification, operational risk and modern GRC strategy. He regularly advises organizations on aligning cybersecurity initiatives with business priorities and executive decision-making.

Emily O’Carroll
Field CISO, SW

Emily O'Carroll

 
Emily O’Carroll is a Field CISO for GuidePoint Security supporting organizations across the Southwest region. Prior to joining GuidePoint, she served as a global CISO leading cybersecurity strategy, governance and risk initiatives for a multinational retail and manufacturing organization. Emily brings extensive experience helping organizations mature cyber risk programs, improve executive communication and operationalize security governance.

Sujeet Bambawale
Field CISO, NW

Sujeet Bambawale

 
Sujeet Bambawale is a Field CISO for GuidePoint Security in the Northwest region with deep expertise in cybersecurity strategy, governance and emerging technology risk. He works with executive leadership teams to help organizations navigate evolving challenges around AI, cyber resilience and risk management transformation. Sujeet frequently advises clients on aligning security investments and governance practices to measurable business outcomes.

Tim Amerson
Field CISO, FED

Tim Amerson

 
Tim Amerson is a Field CISO supporting GuidePoint Security’s federal practice, where he focuses on cybersecurity strategy, risk management and operational resilience for public sector organizations. He brings extensive experience helping organizations strengthen governance programs, manage complex security environments and improve incident preparedness. Tim works closely with leadership teams to align security initiatives with mission objectives and evolving threat landscapes.