Risk Assessment vs Risk Analysis

Although people often use the words "assess" and "analyze" interchangeably, the terms are not synonymous in risk management. Each one has a specific meaning, and the distinction between the ...
April 4, 2022

What is Vendor Risk Management (VRM)? The Definitive Guide

Vendor risk management (VRM), a part of vendor management, is the process of identifying, analyzing, monitoring, and mitigating the risks that third-party vendors might pose to your organiza ...
March 24, 2022

Follow the Data: 5 Strategies to Managing Third Party Risk

For many organizations, managing third-party risk starts out as an easy proposition. However, as they mature, this same endeavor becomes unwieldy. With one or two third parties in your su ...
October 6, 2021

Cloud Security vs. Traditional Security

Understand the policies and practices that differentiate traditional network security from cloud security, and how to keep your data safe.  For organizations collecting more data every yea ...
June 7, 2021

6 Steps to Performing a Cybersecurity Risk Assessment

There’s no such thing as one-size-fits-all cybersecurity. Every organization faces its own unique set of security risks, and needs to take its own approach to cybersecurity risk assessment ...
May 31, 2021

What is an IT Security Audit?

An IT security audit can often cause stress within a company — but it doesn’t need to.  Security audits are technical reviews of an IT system’s configurations, technologies, infrastr ...
May 26, 2021

4 Risk Management Tips for Retail Business

Retail risk management is about much more than security cameras, mall cops, and theft insurance policies. COVID-19 lockdowns forced the retail industry to focus on its e-commerce operations, ...
May 20, 2021

SSAE 18 Requirements

The Statement on Standards for Attestation Engagements 18, or SSAE 18, is a standard that auditors can use to review the controls of technology vendors and other service providers so that bu ...
January 6, 2021
1 2 3 4