An open place for GRC practitioners to learn the engineering layer and ship it in public. Engineers, auditors, internal GRC teams, TPRM, 3PAOs, platform operators, and framework experts building the open-source foundation for GRC, the way Learn the Cloud did for cloud.
Paid membership community. Weekly private podcast, bi-weekly live Q&A, hands-on AWS compliance labs, mock interviews, career playbooks, and live builder sessions. Details and pricing at grcengclub.com.
Directory: directory.grcengclub.com · YouTube: @grcengineeringclub
| Project | What it is |
|---|---|
| claude-grc-engineering | Open-source Claude Code plugin marketplace: persona plugins, 20+ framework reference plugins, thin cloud/SaaS connectors, and a common Finding contract anyone can plug into |
| directory | Public directory of GRC engineers. Hiring managers find practitioners; practitioners find each other |
| design-system | Brand and design system behind grcengclub.com and every Club surface. CSS tokens, Inter fonts, slide templates, UI kits, and assets |
| vouch | Community trust management system based on explicit vouches |
- Join the Club: grcengclub.com
- Add yourself to the directory: directory.grcengclub.com
- Contribute to the toolkit: new connectors, framework plugin improvements, and real-world implementation guidance are the highest-value contributions. Good first issues →
- Talk shop: Discussions
Anyone working in GRC: assessors, internal audit, security engineering, CISO teams, TPRM, platform operators, framework experts, and commercial GRC platforms whose customers also live in Claude Code. The Finding contract is designed to normalize output from any source, so anyone can plug their stack in and contribute.