IT Professional Group, Inc. (ITPG)’s Governance, Risk, & Compliance (GRC) Center of Excellence (CoE) is headquartered in Vienna, VA with offices globally supporting the Americas, EMEA, and the Pacific-Rim. ITPG’s GRC Services uniquely solve annual risk and compliance challenges for both multi-national and national companies and organizations. Today, ITPG’s GRC Services support both private sector (Fortune 1000) and public sector (Government, Non-Profit) compliance laws and requirements. More importantly, the professionals that work within ITPG’s GRC CoE are also certified instructors, professors, and teachers who live and breathe GRC services and recent compliance laws and their security and privacy requirements. It is this commitment to knowledge, education, and training that all GRC Services consultants bring to each consulting engagement.

“Our mission is to solve our client’s GRC business challenges and compliance gaps while providing in-depth knowledge transfer to our client’s IT and IT security personnel while on-site.” – Mr. David Kim, Sr. Vice President – GRC Solutions IT Professional Group, Inc.

ITPG’s commitment to excellence comes from our dedication in providing both our clients and our students with the most current and up-to-date compliance and security gap remediation solutions. These compliance and security solutions are critical to combat identified risks, threats, vulnerabilities, and exploits found in today’s IT infrastructure. ITPG’s GRC Services assist clients with translating U.S. compliance laws requirements into tactical security controls and countermeasures to ensure our clients are 100% compliant and their work-force is security awareness trained.

“ITPG believes it is important to leave our clients with on-going organizational policies and operational procedures to assist organizations with performing ongoing risk management, risk identification, and ‘risk mitigation.” – Mr. David Kim, Sr. Vice President – GRC Services IT Professional Group, Inc.

ITPG’s GRC Services expertise is fostered through performing real-world, compliance gap analyses, audits, and gap remediation recommendations. Our recommendations typically include security designs and security implementations that include IT security frameworks, vulnerability assessments, penetration testing, and deploying defense-in-depth security strategies for large enterprises, government, and Fortune 1000 organizations. The consultants that work in ITPG’s GRC Solutions CoE have real-world, hands-on skills performing governance committee boards, organizational policies, operational procedures, security risk assessments, vulnerability assessments, and penetration testing on production IT infrastructures.

“The professionals that work in ITPG’s GRC practice are professional instructors and/or certified professionals in their area of expertise. Our commitment to education, training, and professional certification for our GRC consultants means our clients are getting the best talent possible.” – Mr. David Kim, Sr. Vice President – GRC Services IT Professional Group, Inc.


  • association_icon

    Association Growth

    Strategy. Tactics. Execution. Growth.

  • cyber_icon

    Cyber Security

    Securing Organizations From The Inside Out.

  • grc_icon

    GRC Services

    Business Compliance Solved.