RASOR Center is a digital research lab publishing insights, tools, and education at the intersection of cybersecurity, governance, risk, automation and organizational execution.
Subscribe to the briefingThe Risk and Security Open Research (RASOR) Center is a modern research outlet exploring how security leaders can rethink governance, streamline risk processes, and execute security projects.
We publish high-trust analysis, field notes, frameworks, and operating strategies from the front lines of risk and security.
From third-party risk to issue management, our work sits at the edge of what CISO operations could be, not what it’s always been.
At RASOR Center, our research spans both operational security and the human systems that support it. We examine how lean teams can govern risk more effectively, how automation is reshaping GRC, and how communication drives real security culture.
Our goal is to surface practical insights for both seasoned leaders and emerging professionals.
.png)
Governance Risk and Compliance Operations
New ways to operationalize policy, compliance, and business alignment in lean, forward thinking teams.
Automation, AI and Systems Design
Exploratory research on the tools, workflows and agents reshaping modern enterprise security business functions.
Project Management and Internal Communication
How to break silos throughout the security organization, through initiative awareness and transparent, effective communication.
Career Pathways in Security
Research-backed frameworks for upskilling talent and embedding them into high-impact organizations.
Hey, I'm Kyree!
I explore the intersection of governance, risk, compliance, human behavior, and security operations through research, writing, and systems design.
My professional background includes risk and compliance roles at organizations from a wide variety of industries including software, healthcare, professional services and finance.
I’m particularly interested in how security leaders can simplify GRC operations, use security as a tool to build real trust, complete end-to-end security projects on time, and align to frameworks like SOC2, ISO 27001, and NIST 800-53 without unnecessary complexity.
I currently lead RASOR Center, an independent research initiative focused on studying how GRC programs and CISO operations evolve in modern, resource-constrained environments.
Through frameworks, publications, and tooling exploration, my work aims to support security professionals looking to improve clarity, maturity, and efficiency within their organizations.
.png)
.png)
Cut through the fluff. Each post explores a real-world questions facing today’s security leaders.
Drawn from experience, shaped by research, and written to spark action.
While RASOR Center operates as a research lab first, we also build tools and training systems for the next generation of security professionals, creating a virtuous cycle and positive feedback loop between research, application, and talent development.RASOR Club is an exclusive professional development community for GRC professionals looking to advance their careers, network, and stay up-to-date with the latest GRC trends and concepts.
Subscribe to The CISO Assistant Newsletter
Get deep-dive articles, frameworks, and micro-briefs directly in your inbox—grounded in field experience and layered with original analysis.