The Gruntworks Way!

We protect what matters most: Your people, your business, and your future.

Gruntworks Technology is built on a simple idea: security and compliance should work in practice, not just on paper.

Many organizations don’t struggle because they lack frameworks. They struggle because those frameworks don’t translate cleanly into day-to-day operations. Exceptions pile up, documentation drifts, and risk decisions lose clarity over time.

Gruntworks focuses on the areas where programs tend to break first, especially exception management, audit readiness, and the operational side of GRC. The goal is not just to pass audits, but to build programs that hold up under real conditions.

Background

Gruntworks is led by a CISSP, CISA, and CISM-certified practitioner with hands-on experience across multiple organizations, including environments where security programs had to function under pressure, not just meet requirements.

That experience shapes a practical approach: focus on what works, remove what doesn’t, and keep programs aligned with how the business actually operates.

The Gruntworks Way

  • Integrity First
    Clear, direct guidance. No unnecessary complexity.

  • Service-Driven
    Founded by a service-disabled veteran, with a focus on responsibility, reliability, and follow-through.

  • Practicality Over Theory
    Frameworks matter, but only if they work in real environments.

  • Partnership
    Work alongside your team to solve problems, not just point them out.

  • Founder & Principal Consultant

    Glenn is an information security and GRC practitioner focused on making security programs work in real environments, not just on paper.

    He has led and supported security and compliance efforts across Fortune 500 companies, startups, and higher education, with a particular focus on exception management, audit readiness, and operational GRC. His work centers on the areas where programs tend to break down, including backlog growth, unclear ownership, and documentation that drifts over time.

    Glenn holds CISSP, CISM, and CISA certifications and has over 15 years of experience in IT and cybersecurity. After serving in the Army, he founded Gruntworks Technology to bring practical, experience-driven security guidance to organizations that need it.

    He is also the author of The GRC Exception Handbook, a practical guide to building and maintaining effective exception management programs.

  • Senior Consultant

    Dylan has a background in security operations, compliance, and identity management, with expertise in strengthening cloud and endpoint environments. He has supported organizations across healthcare, retail, and enterprise technology by implementing IAM controls, administering platforms like Wiz Cloud Security and JumpCloud, and driving compliance initiatives including ISO 27001, SOC 2, and HITRUST. Dylan leads security reviews, manages cloud security operations, and partners with stakeholders to safeguard sensitive data through a business-minded, results driven approach.

  • Senior Consultant

    Ryan is a seasoned information security and privacy expert with extensive experience in fast-paced environments. Ryan is nearing the defense of his dissertation and looking to complete his PhD in Cybersecurity Leadership in 2026!