by David Ponder | Jun 27, 2018 | Risk Management, SOC Reports
“Dear vendor, your Service Provider’s SOC report doesn’t cover the services you’re providing us. Thank you for providing Amazon’s/Google’s/Microsoft’s SOC 2 report, but can you please provide a SOC 2 report that covers your...
by David Ponder | Jun 19, 2018 | Chief Compliance Officers
Watch a replay of our GRC Strategy Roadmap webinar here with no registration required In this webinar we discuss what GRC is, why you need a GRC Strategy Roadmap, and how you can leverage a Roadmap to guide through your GRC implementation journey. Wherever you are in...
by David Ponder | Jul 7, 2017 | GRC Implementation
One theme that we experience over and over when working with clients who are implementing or improving Governance, Risk Management, and Compliance (GRC) processes and the eGRC systems that support them, is their overwhelming appetite for “big bang” implementations....
by David Ponder | Feb 1, 2017 | RSA Archer
Archer 6.2 is RSA’s latest Archer Platform version. The move from 5.X to this version brings some pretty big (and mostly desirable) changes. RSA advertises the best of these: new modules such as Operational Risk Management, new functionality such as...