Homepage Slideshow
Implementing a NIST Framework for Adaptive Cybersecurity...
Free CPE Webinar on March 21st @ 1pm Eastern. Book your seat!
White Paper: Revitalizing Access Control Programs
Available to download now!
Learn How to Survive a Data Breach in 2019...
Now On-Demand!
Learn How to Intelligently Automate IAM...
Now On-Demand!
Digital GRC: Innovations for Early Identification and Management of Risk
On-Demand!
White Paper: Taking Command of Your GRC Journey
Download Now!
Gain a Birds Eye View of Enterprise GRC
GRC Evolution in Digital Enterprises as ERM and Cyber Security Converge. Watch Now On-Demand!
White Paper: Effectively Managing Privacy Risk in Processing Personal Data
Download Now!
Evolving an Enterprise Risk Management Program
Watch this 5 Star Rated webinar Now On-Demand!
Striving for Data Security in the Cloud
IT Security & Privacy Governance in the Cloud.
http://www.executiveitforums.org/index.php?option=com_content&view=article&id=7247:rsvp&catid=438
Latest News
- UBS hit with £27.6 million penalty over massive transaction reporting fail
- FIS to buy Worldpay for $35 billion
- Canadian regulators consult on framework for crypto-asset trading platforms
- Esma issues favourable report on RegTech developments
- European Commission welcomes agreement on more robust supervision of central counterparties
- Bank of England slammed over outdated IT and culture
- US Senate castigates Equifax over data breach
- Israeli committee recommends creation of crypto asset exchange
- Singapore raises cyber protection guidance standards
- RBI fines Indian banks over Swift compliance failures
- Danske Bank is using AI to predict IT breakdowns before they happen
- Banks run war games to test response to advanced WannaCry threat
- MUFG turns on biometric authentication with Nok Nok Labs
- Eftpos malware attack hits 136 US stores
- Regulator tells USAA to fix lax information security
- Bank of Valletta turns off the lights as cyber attackers strike
- EU and global securities regulators welcome agreement on data transfer
- Nasdaq sells GRC unit BWise to SAI Global
- Metro customers hit by text-targetting attack
- SEC seeks help on blockchain data
On-Demand
-
Critical Actions to Prevent a Data Breach in 2019 and BeyondRecorded: November 29 | 2018 Attend
Today’s organizations face a cybersecurity landscape more difficult to navigate than ever before. When it comes to data breaches, the risk for organizations is high, from the easily calculable costs of notification and business loss to the less tangible effects on a company's brand and customer loyalty. With large-scale data breaches continuing to make the headlines in 2018, organizations must be proactive, not reactive, in the face of looming cyber threats. Proactive threat intelligence can enable organizations to prevent breaches or compromises before they occur.
-
Compliance vs Risk: Aligning Priorities & Prioritizing ThreatsRecorded: September 27 | 2018 Attend
Compliance is a fundamental pillar to effective risk management at any company. However, simply complying with laws and regulations without considering the broader threat landscape can result in disaster. Certainly, a balance between compliance and risk is necessary. Ensuring compliance represents an organization's starting point, not the endgame, should be a priority.
-
GDPR 101: Managing Data Risk & Maintaining Compliance After DeadlineRecorded: August 28 | 2018 Attend
Achieving and maintaining GDPR compliance is a complex and expensive initiative for companies of all sizes, across all geographies and industries, and tech giants have already been sued for violating the terms, while major newspapers have been forced to restrict EU access to their websites for fear of noncompliance.
-
Post-GDPR: Key Steps to GRC IntegrationRecorded: July 26 | 2018 Attend
Data protection laws such as the General Data Protection Regulation (GDPR) are complex, and can impact a broad range of business roles, including legal, audit, HR and finance, not just IT. In achieving GDPR compliance, organizations should focus on getting these roles to work together in ongoing efforts to ensure governance, risk and compliance (GRC) across an organization, and not be distracted by the noise in the marketplace.
-
Practical Steps to Scale Your Vendor Risk Management ProgramRecorded: June 26 | 2018 Attend
As organizations rely on third parties to grow and thrive, they’re exposed to major cybersecurity risks. Mitigating this risk means confronting the potential security vulnerabilities that are present in your third party network, but traditional vendor risk management (VRM) methods are no match for modern threats. According to Deloitte 83% of today’s business leaders lack confidence in third party VRM processes.
-
Best Practices for GRC Implementation and Enterprise SecurityRecorded: June 5 | 2018 Attend
In today’s world, implementing an effective GRC program is critical for every organization striving to secure the enterprise in an era of increasingly frequent and complex cyber threats. However, getting budget approval, organization buy-in and executing on a successful implementation can be daunting tasks to take on.
-
GDPR Compliance MasterClass
Recorded: April 24 | 2018 Attend
The GDPR is the most significant change in data privacy regulation in more than 20 years. It comes into force on 25 May 2018 and will impact all businesses that process personal data or businesses that process personal data of EU citizens even if they are not in the EU. Obligations for compliance will affect both controller and processors and regulators will get increased enforcement powers and the right to impose fines of up to 4% of global turnover for both data breaches and infringements of the law.
-
Enabling Cybersecurity: Ignite Your ERM ProgramRecorded: March 22 | 2018 Attend
Effective risk management is critical for every organization, especially in the current era of increasingly frequent and complex cyber threats. Organizations with the ability to detect changes across global IT environments in real time can better prevent and respond to malicious acts such as ransomware/malware attacks and configuration tampering.
-
Critical Actions to Finalize Your GDPR Compliance Program: Part 2Recorded: January 30 | 2017 Attend
The new EU General Data Protection Regulation (GDPR) rule looms and will take affect in May 2018, but only a third of companies are on track to be compliant by the due date. GDPR is the most significant change in data privacy regulation in more than 20 years. It represents an extraordinary shift in the way businesses will be expected to operate when they gather, process, maintain, and protect customer data. Any organization that retains information of EU citizens must be in compliance or face huge fines of up to 4% of worldwide turnover.
-
A Tactical Guide to Reducing Your Data Breach RiskRecorded: August 29 | 2017 Attend
Over 90% of the world’s data has been generated in the last few years. Accompanying this rapid growth in data comes exponential risks, as witnessed by the spike in cyber attacks of which no organization seems immune. The financial rewards gained by the perpetuators of cyber attacks is blatant, and this is driving continued attacks on companies containing massive amounts of consumer data. For these companies securing data is only half the battle. The risks can be greater when data is transmitted externally, hence it is critical that organizations know where sensitive data is going, how it is being transmitted, and how it is being handled and stored.
-
A Data Security Survival Guide in an Interconnected WorldRecorded: October 25 | 2017 Attend
As the number of internet-connected devices skyrockets into the billions, a data security strategy is an increasingly important part of any organization’s ability to manage and protect critical information. Enterprises are migrating to the cloud in droves, however, protecting data in the cloud remains a challenge as employees push to access cloud apps from any device, anywhere. In the last year alone, 1 in 3 organizations were hacked more than 5 times, and with the increased number of attacks the financial cost of security incidents is also rising.
-
Digital GRC: Innovations for Early Identification and Management of RiskRecorded: November 16 | 2017 Attend
Digitization has become deeply embedded in enterprise strategy, as nearly all businesses and activities have been slated for digital transformations. The significant advantages of digitization, with respect to customer experience, revenue, and cost, have become increasingly compelling, and we are starting to see digital transformations in risk create real business value by improving efficiency and the quality of risk decisions.
Visionaries
-
Steve Durbin is Vice President of the Information Security Forum (ISF). His main areas of focus include the emerging security threat landscape, Cyber ...
-
Adrian Lane is the CTO and Security Analyst at Securosis. He is a Senior Security Strategist with 25 years of industry experience. He brings...
-
Rebecca Herold, CISM, CISSP, CISA, CIPP, FLMI. Rebecca is an information privacy, security and compliance consultant, author and instructor who has pr...
-
Ed Ferrara is Principal Analyst for Security and Risk at Forrester Research. He contributes to Forrester's offerings for the Security & Risk Profe...
-
Chris McClean contributes to Forrester's offerings for the Security & Risk professional, leading the company's coverage of governance, risk, and c...
-
Derek Brink is the Vice President and Research Fellow at Aberdeen group. He is a senior high-tech executive experienced in strateg...
-
John Kindervag is a Senior Analyst at Forrester serving Security & Risk professionals. He is a leading expert on wireless security, network s...
-
Branden Williams has over fifteen years of experience in technology and information security with a formidable background in the majority of the techn...