Audit, Publishing and Risk Management - Continuity Professionals Pulse

Silicon Valley Bank (SVB) Failures in Risk Management: Why ERM vs GRC

LogisManager

MAY 9, 2023

Silicon Valley Bank (SVB) Failures in Risk Management: Why ERM vs GRC By Steven Minsky | May 5, 2023 Silicon Valley Bank (SVB) was closed by regulators and reminded us of the recession associated with Lehman Brothers and Washington Mutual Bank in 2008. However, the evidence was inconclusive so their strategy continued unchanged.

Banking

Banking Risk Management Management Corporate Governance

The Colonial Pipeline Hack: Failure in Risk Management

LogisManager

MAY 20, 2021

Colonial Pipeline Hack: Failure in Risk Management. With strong Enterprise Risk Management (ERM), nearly 100% of all liabilities can be avoided. ERM fosters effective governance programs that identify and prevent system misconfigurations, poor patch management practices and weak password management.

Risk Management

Risk Management Management Authentication Hospitality

Product’s Perspective: True Risk: Why External Vendor Ratings are Only Half the Picture

LogisManager

SEPTEMBER 24, 2021

From the perspective of our Product team, the challenges of risk and compliance professionals are at the forefront. This collaborative group of developers, designers, lawyers and risk managers uses those insights, along with rigorous R&D, to inform the way LogicManager works. Bonus Material: Free Risk Assessment Template.

Risk Management

Risk Management Audit Evaluation Healthcare

Webinars

How to Avoid Pitfalls In Automation: Keep Humans In the Loop

MORE WEBINARS

What Is Risk Management?

LogisManager

OCTOBER 12, 2021

What Is Risk Management? The world will always be filled with uncertainty and with uncertainty inevitably comes risk. Risk management, in its simplest form, is assessing the possibility of something bad happening; i.e. “If I take this action, will it result negatively?”. What Is Risk Management?

Risk Management

Risk Management Management Insurance Insurance

Product’s Perspective: How to Build an “ESG Bowtie”

LogisManager

AUGUST 17, 2021

From the perspective of our Product team, the challenges of risk and compliance professionals are at the forefront. This collaborative group of developers, designers, lawyers and risk managers uses those insights, along with rigorous R&D, to inform the way LogicManager works. Related Post: What Is ESG?

Audit

Audit Government Risk Management Publishing

Take Control of Reporting with Configurable Out-of-the-Box LM 2.0 Reports

LogisManager

AUGUST 28, 2024

New Configurable Out-of-the-Box Reports Published: August 28, 2024 Staying ahead of the curve means having the right insights at your fingertips. Twelve redesigned reports specifically tailored for Enterprise Risk Management, Third Party Risk Management, and Internal Audit. The result?

Audit

Audit Risk Management Mitigation Publishing

Risk Governance: To Stay Safe, Write Policies Addressing These Five Areas

MHA Consulting

JULY 20, 2023

Data Retention and Management In setting policies that control where and how long to retain data, it’s important to balance the needs of regulatory requirements, business advantage, data storage costs, and the risks associated with possessing the data.

Government

Government Media Risk Management Consulting

Risk Assessments and Internal Controls

Reciprocity

SEPTEMBER 12, 2024

Internal controls and risk management are not goals in and of themselves. Flaws in internal control can emerge when new initiatives are not coordinated with risk management principles. A proper risk assessment can help an organization to manage risks and improve decision-making. Control activities.

Audit

Audit Risk Management Mitigation All-Hazards

ISO 27001 Certification Requirements & Standards

Reciprocity

DECEMBER 21, 2022

If using an ISO audit software tool to achieve ISO certification is on your compliance roadmap, here’s a quick primer to get you up to speed and jumpstart your ISO compliance efforts. The ISO 27001 family, published by the International Organization for Standardization, includes a set of standards for information security.

Audit

Audit Accreditation Gap Analysis All-Hazards

The Balancing Act of Efficiency and Resilience: How to Connect with Executives and Key Stakeholders

Castellan

DECEMBER 21, 2021

Now is the time to make a formal shift away from looking at terms such as business continuity, risk management, and operational resilience as just catch-phrases shared once a year in board packets or when an audit comes around. See How Boards are Prioritizing Resilience. DOWNLOAD REPORT. Have they been tested or exercised?

Resilience

Resilience Pandemic Risk Management Business Continuity

How to Prevent Third-Party Vendor Data Breaches

Reciprocity

OCTOBER 7, 2024

It begins with a robust and responsive vendor risk management policy, which can be divided into several action areas. An audit evaluates how the organization executes against its security compliance framework, as well as its performance in previous audits. What Do You Do if You Have a Third-Party Data Breach?

Audit

Audit Cybersecurity Evaluation Risk Management

Managing ICT third-party risk under DORA regulation

Fusion Risk Management

JANUARY 31, 2024

As organizations begin to determine the impact that DORA has on their specific business, a common thread has emerged: while Information and Communication Technology (ICT) Third-Party Risk Management (TPRM) is its own pillar in the regulation, TPRM touches on all other pillars of the regulation.

Management

Management Risk Management Activation Outsourcing

The Digital Operational Resilience Act is Finalized – Now is the Time to Act

Fusion Risk Management

AUGUST 18, 2022

The regulation is intended to make compliance obligations less confusing and provide greater security for consumers by creating unified standards for third-party risk monitoring, performance, and auditing. . The DORA is landmark legislation that is the first of its kind that focuses on how regulated entities manage their ICT risk.

Resilience

Resilience Authorization Gap Analysis Risk Management

Security Posture: Definition and Assessments

Reciprocity

JANUARY 3, 2023

In the United States, the National Institute of Standards and Technology (NIST) has published numerous widely used security frameworks. If you don’t already have one established in your organization, start by creating a risk management team. Prepare for Attacks.

Security

Security Cybersecurity Vulnerability Risk Management

How To Develop An ESG Strategy

LogisManager

OCTOBER 12, 2021

2021 Gartner® Magic Quadrant for IT Vendor Risk Management Tools in 2021 & Beyond? A booklet recently published by KPMG recently stated that climate change and environmental risks are considered by global CEOs to be the number one factor. Measuring the Impact of your ESG Strategy Through Enterprise Risk Management.

Evaluation

Evaluation Audit Risk Management Corporate Governance

How To Develop An ESG Strategy

LogisManager

OCTOBER 12, 2021

A booklet recently published by KPMG recently stated that climate change and environmental risks are considered by global CEOs to be the number one factor. These financial, operational and risk management benefits are only representative of one side of the coin when it comes to the benefits of having a strong ESG strategy.

Evaluation

Evaluation Audit Corporate Governance Risk Management

The Key Differences between FedRAMP A-TO & P-ATO

Reciprocity

OCTOBER 7, 2024

Through a set of best practices and controls, FedRAMP provides agencies and vendors with a “standardized approach to security and risk assessment for cloud technologies and federal agencies,” to use the FedRAMP website ‘s own words. Once the agency authorizes a CSP’s package, the agency emails the FedRAMP PMO.

Accreditation

Accreditation Authorization Government Security

Guide: Complete Guide to the NIST Cybersecurity Framework

Reciprocity

OCTOBER 9, 2024

How to prepare for a NIST Audit: Checklist What is a security impact analysis? For almost ten years, NIST has been at the forefront of developing comprehensive cybersecurity risk management frameworks. Additionally, we’ve included links for deeper exploration and a practical guide to preparing for a NIST compliance audit.

Cybersecurity

Cybersecurity Audit Risk Management Vulnerability

Guide: Complete Guide to the NIST Cybersecurity Framework

Reciprocity

OCTOBER 9, 2024

How to prepare for a NIST Audit: Checklist What is a security impact analysis? For almost ten years, NIST has been at the forefront of developing comprehensive cybersecurity risk management frameworks. Additionally, we’ve included links for deeper exploration and a practical guide to preparing for a NIST compliance audit.

Cybersecurity

Cybersecurity Audit Risk Management Vulnerability

Data Privacy Week 2024: The Definitive Roundup of Expert Quotes

Solutions Review

JANUARY 25, 2024

We’ve seen US states such as California passing their own privacy laws and drafting detailed regulations on cybersecurity audits, risk assessments, and automated decision making privacy by design in practice a must-do to be able to effectively respond to the demands of augmented privacy regulatory frameworks.

Authentication

Authentication Cybersecurity Security Government

Data Privacy Awareness Month 2024: Roundup of Expert Quotes

Solutions Review

FEBRUARY 1, 2024

We’ve seen US states such as California passing their own privacy laws and drafting detailed regulations on cybersecurity audits, risk assessments, and automated decision making privacy by design in practice a must-do to be able to effectively respond to the demands of augmented privacy regulatory frameworks.

Healthcare

Healthcare Cybersecurity Security Government

Data Privacy Day 2024: The Definitive Roundup of Expert Quotes

Solutions Review

JANUARY 28, 2024

We’ve seen US states such as California passing their own privacy laws and drafting detailed regulations on cybersecurity audits, risk assessments, and automated decision making privacy by design in practice a must-do to be able to effectively respond to the demands of augmented privacy regulatory frameworks.

Healthcare

Healthcare Cybersecurity Security Government

Regulatory Revenue? 10 Ways to Turn Compliance into a Competitive Advantage

Pure Storage

OCTOBER 17, 2024

for example, includes several major additions to its first iteration, addressing organizational issues, risk management, and policies; guidelines to help companies measure their compliance level; additional mappings and references to other cybersecurity standards; and a new suite of guidance to help with implementation. didn’t exist.

Cyber Resilience

Cyber Resilience Resilience Financial Services Audit

Business Continuity Guide for Smaller Organizations

Stratogrid Advisory

JUNE 3, 2020

Note : Some sections of this article were previously published in our blog archives. Additionally, the Business Impact Analysis (BIA) process outlined in Chapter 4 will leverage findings of the organizational Risk Assessment activity, which could be executed as a part of the BIA engagement.

Business Continuity

Business Continuity BCM Impact Analysis BCP

Business Continuity Guide for Smaller Organizations

Stratogrid Advisory

JUNE 3, 2020

Note : Some sections of this article were previously published in our blog archives. Section 2 - Business Continuity Management (BCM) Program Implementation. Risk Methodology. Vendor Risk Management. BCM Program Assessments and Audits. aligning the IT Disaster Recovery Plan to the BIA requirements.

Business Continuity

Business Continuity BCM Impact Analysis BCP

Continuity Professionals Pulse

Silicon Valley Bank (SVB) Failures in Risk Management: Why ERM vs GRC

The Colonial Pipeline Hack: Failure in Risk Management

Webinars

Trending Sources

Product’s Perspective: True Risk: Why External Vendor Ratings are Only Half the Picture

Webinars

What Is Risk Management?

Product’s Perspective: How to Build an “ESG Bowtie”

Take Control of Reporting with Configurable Out-of-the-Box LM 2.0 Reports

Risk Governance: To Stay Safe, Write Policies Addressing These Five Areas

Risk Assessments and Internal Controls

ISO 27001 Certification Requirements & Standards

The Balancing Act of Efficiency and Resilience: How to Connect with Executives and Key Stakeholders

How to Prevent Third-Party Vendor Data Breaches

Managing ICT third-party risk under DORA regulation

The Digital Operational Resilience Act is Finalized – Now is the Time to Act

Security Posture: Definition and Assessments

How To Develop An ESG Strategy

How To Develop An ESG Strategy

The Key Differences between FedRAMP A-TO & P-ATO

Guide: Complete Guide to the NIST Cybersecurity Framework

Guide: Complete Guide to the NIST Cybersecurity Framework

Data Privacy Week 2024: The Definitive Roundup of Expert Quotes

Data Privacy Awareness Month 2024: Roundup of Expert Quotes

Data Privacy Day 2024: The Definitive Roundup of Expert Quotes

Regulatory Revenue? 10 Ways to Turn Compliance into a Competitive Advantage

Business Continuity Guide for Smaller Organizations

Business Continuity Guide for Smaller Organizations

Stay Connected