Newsroom

Organizations often view their websites as simple business cards that give customers information. Protecting your corporate website as an enterprise risk management strategy can keep your da ...

As organizations and businesses around the world and across industries migrate their IT to the cloud, C-suites are faced with a new dilemma for governance, risk management and compliance (GR ...

The ISO 27001 standard for management of information systems helps organizations of any size to manage the security of data assets such as employee information, financial information, intell ...

Data breaches against healthcare organizations affected more than 1 million people in 2020. The average total data breach cost in the same year was far higher in the healthcare industry ($7. ...

The California Consumer Privacy Act (CCPA), heralded as the U.S. version of the European Union's General Data Protection Regulation (GDPR), has many American companies overhauling their appr ...

Organizations rely on a host of standards to help them achieve regulatory compliance. Among the most popular are SOC 2 and ISO 27001 - standards that might seem similar at first glance, and ...

Vendor risk management (VRM), a part of vendor management, identifies, analyzes, monitors, and mitigates the risks that third-party vendors might pose to your organization. Such risks could ...

The various niches of risk management have become a veritable alphabet soup of acronyms. The advent of the digital age is partly to blame. Virtually every organization is "going digital" ...

Every risk management program should include risks posed by your vendors. Beware, however: vendor risk management is a complex process unto itself, requiring ongoing monitoring and measureme ...

Enterprise risk management (ERM) is critical for success in the modern business landscape. Your ERM program should encompass all aspects of risk management and response in all business proce ...

Modern organizations operate in a highly complex environment. New technologies, increasing digitization, and evolving customer demands create risks that can disrupt operations, weaken cybers ...

Automated tools allow your compliance management system (CMS) to work effectively. That said, a CMS is less technology unto itself and more like a corporate compliance program, where multipl ...