![[Earn CPE] Critical Steps to Manage CCPA Compliance and Risk in 2020](https://executiveitforums.org/images/JSNimageShow/ccpa.png "[Earn CPE] Critical Steps to Manage CCPA Compliance and Risk in 2020")
![[Earn CPE] Preventing Data Breaches with a Scalable Verification Program](https://executiveitforums.org/images/JSNimageShow/identitycheck.png "[Earn CPE] Preventing Data Breaches with a Scalable Verification Program")
Homepage Slideshow
Matching Threat Intelligence & Third-Party Risk
Attend our CPE Webinar on March 12th. Click to confirm your seat!
Get More Visibility into Your Digital Ecosystem
By attending our CPE Webinar on March 26th. Click to confirm your seat!
Automating GRC to Increase Business Value
Now On-Demand! Click to watch the recording.
Key Steps to Mature Your Third-Party Risk Management Program
Now On-Demand!
[Earn CPE] Critical Steps to Manage CCPA Compliance and Risk in 2020
Now On-Demand!
[Earn CPE] Preventing Data Breaches with a Scalable Verification Program
Now On-Demand!
An Executive's Guide to Cybersecurity Attack Analytics
Now On-Demand!
Learn How to Survive a Data Breach in 2019...
Now On-Demand!
White Paper: Taking Command of Your GRC Journey
Download Now!
White Paper: Effectively Managing Privacy Risk in Processing Personal Data
Download Now!
Latest News
- US charges four members of Chinese military over Equifax hack
- RegTech startup SteelEye raises $10 million
- BIS summarises international policy response to fintech challenges
- Canada puts security at top of open banking review
- 30 million cards from Wawa breach turn up for sale on dark web
- FS firms hit with $36bn in AML, KYC and sanctions fines since financial crisis
- Regulation and anti-competitive behaviour hitting Australian fintech
- Dubai regulator takes the wraps off cyber threat intelligence sharing platform
- Bank cyberattack could hit whole financial system - NY Fed research
- P&N Bank CRM system hacked
- Equifax agrees $1.38bn data breach lawsuit settlement
- Travelex promises 'recovery roadmap'
- Dixons Carphone fined £500k over massive data breach
- Hackers hold Travelex to ransom
- US banks put on red alert as Iran crisis deepens
- Australia delays Open Banking roll out over security concerns
- ProcessUnity Scores Highest in Gartner Review of IT Vendor Risk Management Software
- EC expert group issues call to action on fintech regulation
- Financial firms could generate $140 billion from workforce modernisation - Accenture
- OCC lists cyber threats and emerging technologies in risk outlook
On-Demand
-
Automating GRC to Increase Business ValueRecorded: February 13 | 2020 Attend
GRC is neither a project nor a technology, but a corporate objective for improving governance through more-effective compliance and a better understanding of the impact of risk on business performance. GRC can vary dramatically depending on the businesses vertical market, and even further complexity can be found from one business unit to another. This complexity drives the need for different, highly specialized tools, which raises a huge set of cost, integration, and management issues.
-
Cornerstones to Fortify Your Enterprise Cybersecurity DefenseRecorded: January 23 | 2020 Attend
The enterprise cybersecurity landscape is dramatically expanding in scale and complexity, and cyberattacks are growing in magnitude and impact as digital transformation increases on a global scale. From phishing scams, to ransomware attacks, to malicious breaches from state actors, the potential threat to your business is huge. According to the Ponemon Institute, the average per breach cost to a company in 2018 was estimated at $3.86 million, an increase of 6.4 percent over the previous year.
-
Critical Steps to Manage CCPA Compliance and Risk in 2020Recorded: Dec. 17 | 2019 Attend
The California Consumer Privacy Act of 2018 (CCPA) is arguably the most expansive privacy law in U.S. history and will become enforceable in just a matter of months. The CCPA introduces new privacy rights for consumers and will force companies that conduct business in the State of California to implement structural changes to their privacy programs. The new rights given to California consumers are similar to the rights provided in the European Union’s General Data Protection Regulation (GDPR). The CCPA also subjects non-compliant businesses to expensive fines, class-action lawsuits, and injunctions.
-
Key Steps to Mature Your Third-Party Risk Management ProgramRecorded: Oct 31 | 2019 Attend
High-Profile Data Breaches have placed a spotlight on the risk of cyber security breaches with vendors and subcontractors, expanding the need to have greater rigor in third party risk management and ongoing risk assessments. Maintaining an effective third-party risk management program doesn't happen overnight. It's a journey that involves continual learning, refinement and evolution.
-
CCPA 101: What is It, and How Will It Impact Your Organization?Recorded: October 3rd | 2019 Attend
The California Consumer Privacy Act goes into effect January 1, 2020. If you are a for-profit company operating in the state of California, you need to have the right processes in place to support CCPA privacy requirements – or face stiff penalties. Are you ready?
-
Preventing Data Breaches with a Scalable Verification ProgramRecorded: September 10 | 2019 Attend
Consumer demand is driving the corporate IT environment. Business demands for IT are changing rapidly — so too are the demands on IAM — resulting in the requirement to adopt emerging technologies (e.g., mobile and cloud computing, data loss prevention, and social media) earlier and more quickly. Scalability is critical for any business that wants to catalyze short- and long-term success. A flexible workflow for identity verification can help organizations of all sizes with limited time, resources, and funding to focus their efforts on initiatives that support positive growth. While your business might be conducting background checks today, it could have different verification needs in the future to ease onboarding friction, prevent data breaches, and demonstrate regulatory compliance.
-
Automating Your Third-Party Risk Management Program
Recorded: July 25 | 2019 Attend
The current state of vendor risk management (VRM) is bleak. More than half of all information security breaches are caused by third-party vendors, and according to Deloitte 83% of today’s business leaders lack confidence in third party VRM processes. Given the growing complexities in accurately collecting and screening third-party data and the need for deeper due diligence, automation is key to a successful risk program. However, many corporations haven’t adopted automation in their third-party risk management programs.
-
An Executive's Guide to Smarter GRC with Cybersecurity Attack AnalyticsRecorded: June 27 | 2019 Attend
Today’s increasing organizational complexity and evolving threat environment have made it more critical than ever for organizations to clearly identify their exposures, measure vulnerability risk, and quickly prioritize remediation efforts. Cyberattacks are often hidden from view under a mountain of alerts generated by security systems, giving attackers time to gain access to systems and seize valuable data.
-
Enabling GRC with Secure Authentication Across the Digital EcosystemRecorded: May 30 | 2019 Attend
The days of securing a well-defined perimeter around your organization are gone. The cloud, mobile technologies, the internet of things (IoT) and diverse user groups freely exchange data across digital ecosystems, network and economies. This fluidity, however, means that organizations must secure access at multiple points throughout the organization, or risk letting in intruders seeking to hijack data.
-
Key Steps to Identify Risk and Master Vendor Risk Management
Recorded: April 25 | 2019 Attend
In today’s interconnected technology ecosystem, companies increasingly rely on third party vendors to meet their operational needs. However, the current state of vendor risk management (VRM) is bleak. More than half of all information security breaches are caused by third-party vendors, and according to Deloitte 83% of today’s business leaders lack confidence in third party VRM processes.
-
Implementing a NIST Framework for Adaptive CybersecurityRecorded: March 21 | 2019 View
In an age where cybersecurity threats are an everyday fact of life, organizations are looking for solutions that enable them to predict, prepare and react to the shifting landscape of cyber threats, and implementation of adaptive cyber security strategies is becoming inevitable to achieve that goal.
-
Revitalizing Access Control Programs: Intelligent AutomationRecorded: March 7 | 2019 View
Access control, a critical component of IT security compliance programs, ensures that organizations protect confidential information, like intellectual property and customer data. But your access management program can easily become outdated and static—especially if you rely on manual control testing and user access administration tasks.
Visionaries
-
Steve Durbin is Vice President of the Information Security Forum (ISF). His main areas of focus include the emerging security threat landscape, Cyber ...
-
Adrian Lane is the CTO and Security Analyst at Securosis. He is a Senior Security Strategist with 25 years of industry experience. He brings...
-
Rebecca Herold, CISM, CISSP, CISA, CIPP, FLMI. Rebecca is an information privacy, security and compliance consultant, author and instructor who has pr...
-
Ed Ferrara is Principal Analyst for Security and Risk at Forrester Research. He contributes to Forrester's offerings for the Security & Risk Profe...
-
Chris McClean contributes to Forrester's offerings for the Security & Risk professional, leading the company's coverage of governance, risk, and c...
-
Derek Brink is the Vice President and Research Fellow at Aberdeen group. He is a senior high-tech executive experienced in strateg...
-
John Kindervag is a Senior Analyst at Forrester serving Security & Risk professionals. He is a leading expert on wireless security, network s...
-
Branden Williams has over fifteen years of experience in technology and information security with a formidable background in the majority of the techn...