About GCR

Direction. Leadership. Collaboration.

The mission of Global Cyber Risk (GCR) is simple: We aim to serve our clients by providing senior-level experts who can direct, advise, and assist clients in managing the cyber risks challenging enterprises in today’s digital business world, whether related to privacy, security, cybercrime, or IT governance.

Originally formed in 2000 at The Work-IT Group, the company transitioned to GCR in 2005.  CEO, Jody Westby, recognized the need for a multidisciplinary cybersecurity and privacy consulting entity that provides first-tier services in a manner that integrates the technical, legal, operational, and managerial requirements.  Companies rely upon IT systems for every facet of business operations and their security programs must uphold business operational criteria, ensure privacy obligations are upheld, protect confidential and proprietary data, and detect intrusions, attacks, and security breaches. 

In a rapidly changing environment, relying solely on internal expertise can open the door to liability and risk.  We deliver highly specialized experts in privacy, security, cybercrime, breach management, and cyber risk governance.   We work shoulder-to-shoulder with your people, building the internal capacity and buy-in that is essential for effective security. 

We don’t force-fit your operations to our methodologies. Rather, we follow a model that recognizes and respects the unique elements of each client’s business environment and issues. GCR specializes in combining business process, IT, and security expertise to identify critical risk points within your enterprise.  Our approach reduces risk and minimizing gaps that can occur between autonomous departments or divisions.

GCR is a leader in cyber risk management and IT governance.  CEO Jody Westby is a recognized authority on board and senior management governance responsibilities for the privacy and security of their organization’s digital assets (data, applications, and networks).  She led the development of the Carnegie Mellon University’s Governing for Enterprise Security Implementation Guide and conducted and authored the Carnegie Mellon CyLab 2008, 2010, and 2012 Governance of Enterprise Security reports.

SPECIALIZED EXPERTISE – SENIOR STAFF – KNOWLEDGE TRANSFER