Cybersecurity Transparency and the New SEC Regulation
On March 15, 2022, the Cybersecurity Incident Reporting for Critical Infrastructures Act of 2022 was signed into law.
Digital Risk Report 2023
Digital business investment continues to accelerate. IDC reported that worldwide digital transformation investment reached $1.8 trillion in 2022, and McKinsey projected that the global value of loT products and services will reach $12.6 trillion by 2030.
How risk dashboards can bring true return on investment
The five critical steps that will allow you to realize measurable benefits from implementing risk dashboards in your business.
Grid® Report for GRC Platforms | Fall 2023
The Grid® represents the democratic voice of real software users, rather than the subjective opinion of one analyst. G2 rates products from the GRC Platforms category algorithmically based on data sourced from product reviews shared by G2 users and data aggregated from online sources and social networks.
Navigating the ISO 27001 compliance journey
Let’s face it, ISO 27001 isn’t the world’s most exhilarating topic. But that’s not why you’re here. Chances are, your company’s thinking about certification and you’ll be a key stakeholder for the project. Naturally, you want to know what ISO 27001 is all about. More than that, you want to set your team up for a successful audit.
Risk Appetite: Taking and accepting the right amount of risk
In this ebook, we will share our experiences, lessons learned, and guidance for benchmarking.
What does it really mean to manage risk effectively across the enterprise?
This ebook provides a comprehensive view of what true Enterprise Risk Management is and illustrates how it addresses the inherent problems in the traditional, siloed, non-enterprise approach.
Kiteworks 2023 Privacy and Compliance Report
This report is based on a comprehensive global survey of IT, cybersecurity, and compliance professionals at enterprise-level organizations.
Are You Ready for PCI DSS v4.0?
In this best practices guide, we’ll cover some of the practical steps organizations can take to accelerate the shift towards PCI DSS v4.0—critical security control themes to consider and solutions in the existing security stack that can help with the transition.
Third-Party Risk Management: Trends and Strategies to Help You Stay Ahead of the Curve
While organizations have drastically increased their use of third parties, third-party risk management (TPRM) maturity hasn’t kept pace. This ebook from AuditBoard and RSM, Third-Party Risk Management: Trends and Strategies to Help You Stay Ahead of the Curve, translates current TPRM trends and lessons learned into actionable ideas to help your organization identify, reduce, and monitor third-party risk.
Best Practices for Ongoing Vendor Monitoring
The following paper will lay the foundational steps for ongoing vendor monitoring while providing expert advice and best practices on how to build a world-class, post-contract vendor monitoring engine.
Third-Party Risk: More Third Parties + Limited Supply-Chain Visibility = Big Risks for Organizations
While data breaches are commonplace, occasionally there’s an attack so audacious that its impact reverberates long after the initial jolt. Such was the case with the SolarWinds supply chain breach, in which a nation-state surreptitiously inserted eavesdropping malware into an Oklahoma software maker’s IT performance management solution used by governments and major enterprises.
The InfoSec Survival Guide: Achieving Continuous Compliance
Today, security and compliance leaders are struggling under the pressure of maintaining ongoing compliance in the face of regulatory expansion, changing requirements, technical transformation, explosions of scale (data, users, assets), and the battle for talent. In the face of these encroaching demands, InfoSec professionals are in dire need of a new approach to compliance.
Building a Business Case for a Third-Party Risk Management Tool
Learn how to build a compelling business case for implementing a third-party risk management tool.
