About OpenGRC

OpenGRC was developed to very specifically solve the problems small and mid-sized businesses (SMB) face when attempting to perform the various functions of GRC. One of those problems is, of course, being able to afford a GRC platform in the first place. For that reason, the community version of OpenGRC is both Free and Open Source! There may be a commercial ecosystem in the future, but the versions you see today will always be free, licensed under the MIT license.

OpenGRC was developed by Dr. Lee Mangold, a multiple-time CISO, a long-term engineer, scientist, and security professional based on his experiences with SMB clients across multiple industries and countries. It is expected that OpenGRC will grow over time, and it is hoped that others will share their experiences and make OpenGRC solve problems for everyone!

At its core, OpenGRC aims to be a simple, approachable, and user-friendly platform that solves real problems for real people. There are plenty of GRC platforms on the market today that offer massive scalability, customization, plug-in ecosystems, and they come with price tags to match. This tool is for those without that budget or customization requirements.

Most importantly - This is only the beginning!