by Patrick Burgess | Mar 12, 2020 | Chief Compliance Officers
CMMC – Critical Information and Preparedness – A Summary CMMC is an important requirement looming on the horizon that will impact all federal contracting organizations and the way they do business. It is important to note that the exact requirements companies adhere...
by Andrew Gunter | Dec 23, 2019 | GRC Implementation, IRM, Onspring
A GRC Holiday GRC in 2019 has focused on the debate of Integrated Risk Management (“IRM”) versus Governance Risk Compliance (“GRC”), one claiming to be the future of risk management, the other stating it is same technologies, just new terminology. At their core,...
by Holly Giammanco | Dec 19, 2019 | GRC Implementation
Selecting the Best GRC Solution for Your Organization Governance, Risk and Compliance solutions have evolved greatly over the last 10 years, and there are multiple vendors in the market – from smaller pay-by-user model cloud solutions to enterprise-wide multi-server...
by Andrew Gunter | Sep 26, 2019 | Archer Platform, GRC Implementation, Risk Management, RSA Archer, RSA Charge
Recap from RSA Charge 2019 RSA Charge made for great week of speakers, networking, and evening fun at RSA’s annual event this past week at Disney in Orlando, Florida. With up to eight different client presentations every hour, attendees could follow a pre-designated...
by Bryan Johnson | Jun 28, 2019 | Chief Compliance Officers
Two Lessons from the 2019 Rocky Mountain Information Security Conference (RMISC) Each year I embark on a journey with what seems like every other security professional in the Denver area, to the only Security conference that seems worthwhile to attend: The Rocky...
by Andrew Gunter | Apr 29, 2019 | Chief Compliance Officers
The GRC Technology Hiring Gap I get at least one message a week that goes something like, “Hi Andrew, I came across your profile on LinkedIn and was quite impressed with your background and experience, specifically in RSA Archer. I am looking to fill a few Archer...
by Bryan Johnson | Apr 12, 2019 | Risk Management, SOC Reports
Evaluating Cloud Providers I have a friend who recently started a new business venture. He’s been involved in several other ventures before therefore he’s familiar with the common business processes that are performed when running a business – accounting, scheduling,...
by David Ponder | Mar 18, 2019 | Chief Compliance Officers, GRC Implementation, Risk Management
The Most Overlooked Element of Successful GRC Most GRC / IRM material focuses on things that are unique to the world of business and technology risk. This often makes sense since there is so much to consider when working with GRC. Thousands of GRC guides,...
by Adam Froemming | Feb 25, 2019 | Archer Platform, Chief Compliance Officers, GRC Implementation, RSA Archer
Path to a Successful Upgrade Completing an Archer upgrade can be a daunting task. With the relatively recent release of Archer version 6.5, as Holly Giammanco mentioned in her post “Archer 6.5 is Here!”, there are multiple good reasons to get your Archer platform on...
by Bryan Johnson | Feb 13, 2019 | GRC Implementation, RSA Archer
Agile GRC Development Process As we have blogged about in the past, when we start an Archer engagement with a new client we usually perform a Roadmap exercise that walks them through identifying their current GRC processes and rated on the basis of complexity,...