by Holly Giammanco | Sep 6, 2018 | Risk Management
There is a great article in the September 2018 issue of WIRED magazine titled The Code That Crashed The World. Authored by senior writer Andy Greenberg, it is “the untold story of the most devastating cyberattack in history”. The article is an in-depth...
by David Ponder | Aug 28, 2018 | Chief Compliance Officers
CADRE INFORMATION SECURITY AND CENTIAL ANNOUNCE PARTNERSHIP TO HELP CUSTOMERS DEVELOP RISK MANAGEMENT PROGRAMS CINCINNATI, OH – August 20, 2018 — Cadre Information Security, a leading provider of information security solutions, has announced a partnership with...
by David Ponder | Aug 16, 2018 | Chief Compliance Officers
Today has been a deluge of product news for RSA Archer. More features are being released in the next 6 months than in multiple years prior. Some of the interesting things are being released in the coming months include: Archer version 6.5 will be released in October....
by Bryan Johnson | Aug 8, 2018 | Chief Compliance Officers
In my last blog on the subject of “The Importance of Governance in the GRC Implementation”, I briefly touched on the importance defining a Vision, or rather, setting standards for a GRC implementation. I felt I needed to dive into these a little more because having...
by David Ponder | Jul 25, 2018 | Risk Management
I recently came across a YouTube video post on risk management that piqued my interest. I don’t usually scour social media for risk management posts, but this one claimed to be a controversial stance, as emphasized Risk Management 1 and Risk Management 2 as...
by Andrew Gunter | Jul 17, 2018 | Chief Compliance Officers
Your Compliance team has finally decided to take the plunge and purchase a GRC solution. You have developed an eGRC vision (see last month’s post on creating an eGRC Vision), talked to stakeholders about needs, reviewed Forrester and Gartner’s reports on GRC, have...
by Holly Giammanco | Jul 10, 2018 | Risk Management
Control self-assessments, or CSAs, are where the leaders and supporting teams of business units, departments, or business processes directly engage in an evaluation of the objectives, risks, controls and processes they are responsible for managing. An effective CSA...
by Bryan Johnson | Jul 6, 2018 | Chief Compliance Officers, GRC Implementation
We have helped several organizations implement GRC processes and tools and have seen our fair share of successes and failures. A common thread we see with those who struggle is that and instead of seeing an eGRC software tool as something to bolster their GRC...
by David Ponder | Jun 27, 2018 | Risk Management, SOC Reports
“Dear vendor, your Service Provider’s SOC report doesn’t cover the services you’re providing us. Thank you for providing Amazon’s/Google’s/Microsoft’s SOC 2 report, but can you please provide a SOC 2 report that covers your...
by David Ponder | Jun 19, 2018 | Chief Compliance Officers
Watch a replay of our GRC Strategy Roadmap webinar here with no registration required In this webinar we discuss what GRC is, why you need a GRC Strategy Roadmap, and how you can leverage a Roadmap to guide through your GRC implementation journey. Wherever you are in...