How vulnerability strengthens organizations
When you read the word “vulnerability” in a GRC blog post, your mind probably goes to data breaches or IT security flaws.
How boards can effectively oversee corporate compliance
It’s the board’s fiduciary responsibility to make sure an organization has an effective and well-maintained corporate compliance program.
How risk drives internal control design
Ensuring that your most critical organizational risks are addressed first is essential when designing internal controls.
4 ways diversity & inclusion is good for business
To be truly diverse and inclusive, organizations need to make D&I a core part of the culture.
Is cybersecurity on your holiday list?
From manufacturing companies to government agencies, every sector is at risk. We look at some ways to reduce your cybersecurity risks this holiday season.
Tap into greater public trust with an effective ERM program
An ERM program that properly evaluates, monitors, and helps foresee risks—along with an effective resolution program—is invaluable.
Choosing cybersecurity metrics that matter
CISOs may have hundreds of metrics to manage, but only a few will be relevant to the board. Here’s how to select the right metrics for your organization.
The top 6 challenges for CISOs going into 2020
Heading into 2020, the CISO is stepping out of the server room and into the boardroom. We look at six common challenges they face in this new role.
7 steps to effective third-party risk management
A successful TPRM program extends way beyond the onboarding process. Organizations need to be invested in the whole TPRM lifecycle to properly manage risk.
Preventing fraud with data analytics
With fraudsters becoming more sophisticated, and global data increasing, data analytics is now, more than ever, a critical tool to deal with global fraud.
The difference between VRM & TPRM
While vendor risk management (VRM) and third-party risk management (TPRM) are sometimes used interchangeably, they aren’t the same thing.
Getting started with third-party risk management
Third parties help organizations better serve customers, grow revenues, and cut costs, but they can also cause serious damage if not properly managed.
Business digitalization risk & change management
Businesses that don’t digitalize quickly are going to be left behind, but there are inherent risks in transforming your business to take advantage of digitalization.
How machine learning makes GRC jobs easier
As we continue to find new and interesting applications for this technology, entire sectors, industries, and roles will evolve, including GRC.
Assessing vendor risk with real-time data
Determining high-risk vendors is challenging, which is why it helps to have a solution that integrates with security assessment software.