by Cential Consulting | Nov 4, 2024 | Chief Compliance Officers, ERM, Risk Management
In our previous post, we introduced the concept of modern Enterprise Risk Management (ERM) and its importance in today’s rapidly changing business landscape. Now, let’s dive deeper into the language of risk management. Understanding key ERM terminology is...
by Cential Consulting | Sep 30, 2024 | Chief Compliance Officers, ERM, Risk Management
In today’s rapidly evolving business landscape, the traditional approach to Enterprise Risk Management (ERM) is showing its age. As seasoned risk management professionals, we’ve observed a critical disconnect: while the world moves at breakneck speed, many...
by David Ponder | Jun 27, 2024 | Chief Compliance Officers, SOC Reports
“Dear [vendor], your Service Provider’s SOC report doesn’t cover the services you’re providing us. Thank you for providing Amazon’s/Google’s/Microsoft’s SOC 2 report, but can you please provide a SOC 2 report that covers your services for the most recent period?” This...
by Amber Gerdes | Jun 6, 2024 | Chief Compliance Officers, Onspring
Maintaining compliance with North American Electric Reliability Corporation (NERC) standards in the rapidly evolving utility sector is crucial for operational security and reliability. Cential’s NERC Solution, built on the robust Onspring platform, is designed...
by Amber Gerdes | Mar 8, 2024 | Artificial Intelligence, Chief Compliance Officers, GRC, Risk Management
As risk and compliance professionals, we like to take time towards the beginning of every year to take stock of the previous year and use it to glean insights for the future. 2023 was a year of shifting landscapes and rapid changes in technology and business,...
by Amber Gerdes | Nov 27, 2023 | Chief Compliance Officers, CMMC, Cyber Security Framework, GRC, GRC Implementation, IRM, Risk Management
We’ve helped several organizations implement GRC processes and tools, and we’ve seen our fair share of successes and failures. Among those who struggle with implementation, they usually make the same mistake. Instead of seeing eGRC software as a tool to bolster...