Communications, Insurance and Risk Management - Continuity Professionals Pulse

Change Healthcare’s 2024 Data Breach: Key Risk Management Lessons

LogisManager

OCTOBER 17, 2024

Change Healthcare’s 2024 Data Breach: Key Risk Management Lessons Last Updated: October 17, 2024 In 2024, Change Healthcare faced a significant data breach that rippled across the healthcare industry, highlighting how risks are interconnected and can spread beyond their point of origin.

Risk Management

Risk Management Healthcare Management Audit

Risk Management as a Career: A Guide for BCM Professionals

MHA Consulting

AUGUST 24, 2023

For those with a suitable temperament and skill set, a career in risk management can be rewarding due to the field’s broad scope, consequential nature, and rising prominence. In this week’s post, we’ll look at what a risk manager does and the skills it takes to excel in this role. It’s a permanent ongoing activity.

Risk Management

Risk Management BCM Management All-Hazards

The Best Risk Management Software to Consider for 2021 and Beyond

Solutions Review

SEPTEMBER 9, 2021

Solutions Review’s listing of the best risk management software is an annual mashup of products that best represent current market conditions, according to the crowd. To make your search a little easier, we’ve profiled the best risk management software providers all in one place. The Best Risk Management Software.

Risk Management

Risk Management Management Audit Hospitality

RIMS ERM Conference 2021: Lloyd’s Chairman on the Vital Role of Risk Management in Fighting Climate Change

Risk Management Monitor

NOVEMBER 11, 2021

With climate change quickly becoming one of the most important issues facing the world, Lloyd’s Chairman Bruce Carnegie-Brown stressed the importance of ESG initiatives to address the threat, as well as the vital role of risk managers, in today’s keynote address at the RIMS ERM Conference 2021 in New York City.

Risk Management

Risk Management Management Insurance Insurance

Hurricane Risk Management: Key Considerations Before and After Storms Strike

Risk Management Monitor

AUGUST 30, 2021

The storm marks another overactive hurricane season officially underway in the United States, prompting business leaders and property owners to ensure they are adequately prepared from an insurance and risk management perspective. Before doing so, reach out to your insurance broker who can help guide you through this process.

Risk Management

Risk Management Insurance Insurance Management

Adversarial Risk Management

FS-ISAC

NOVEMBER 8, 2021

We chase concepts that seem simple, such as "basic" network hygiene, asset management, and patching. But these approaches rely on tenets based on traditional operational and financial risk management. While “close enough” works in asset management for financial inventory, it can quickly prove useless in cybersecurity.

Risk Management

Risk Management Management Audit Asset Management

Understanding New York’s New Insurance Disclosure Requirements

Risk Management Monitor

DECEMBER 8, 2022

If your organization operates or could be sued in New York, there has been recent activity on the legal and regulatory risk landscape that risk professionals should be prepared for. What are the New York Disclosure Law’s requirements and how do they impact your insurance program?

Insurance

Insurance Insurance Alert Risk Management

Impact tolerance in operational resilience: A guide for businesses

everbridge

MARCH 6, 2025

Operational resilience has become a defining priority for organizations in sectors like finance and insurance, especially in the UK and Europe. Identify critical dependencies Identify dependencies on information and communication technology, functions/processes, supply chain and critical third parties.

Resilience

Resilience Financial Services Banking Manufacturing

Understand Your Customers to Build a World-Class Risk Management Program

Fusion Risk Management

JULY 29, 2021

In his presentation at Fusion Risk Management’s Solutions21 customer summit , Murphy spoke of “really understanding our audience and the different types of personas who have different requirements and different mental models so we can design communications that engage through storytelling.”.

Risk Management

Risk Management Management Crisis Management Communications

5 Steps to Implement Enterprise Risk Management (ERM)

Reciprocity

MARCH 28, 2022

Enterprise risk management is critical for business success. The fundamental components of ERM are evaluating significant risks and applying adequate responses. Additional important ERM components are risk philosophy or strategy, risk culture, and risk appetite. Two ERM Must-Haves.

Risk Management

Risk Management Management Mitigation All-Hazards

5 Steps to Implement Enterprise Risk Management (ERM)

Reciprocity

AUGUST 18, 2022

Enterprise risk management (ERM) is critical for success in the modern business landscape. Your ERM program should encompass all aspects of risk management and response in all business processes, including cybersecurity, finance, human resources, risk management audit , privacy, compliance, and natural disasters.

Risk Management

Risk Management Management Mitigation Strategic

What Is Enterprise Risk Management & Its Importance

Reciprocity

NOVEMBER 5, 2021

The modern corporate organization faces a host of risks that can affect operational efficiency and regulatory compliance. Simple awareness is not enough to stay ahead of these risks. You must find ways to manage, mitigate, accept, or transfer these risks. Here’s where enterprise risk management (ERM) comes in.

Risk Management

Risk Management Management Audit Strategic

The Cost of Non-Compliance: Why Third-Party Risk Should Be a Top Priority in 2025

Reciprocity

FEBRUARY 4, 2025

The Hidden Costs of Poor Third-Party Risk Management The financial impact of inadequate third-party risk management extends far beyond immediate breach costs. System downtime leads to lost revenue, while emergency vendor replacements and increased insurance premiums create unexpected budget impact.

Risk Management

Risk Management Vulnerability Strategic Insurance

5 Key Takeaways from the EU’s Digital Operational Resilience Act (DORA)

Pure Storage

JANUARY 11, 2024

DORA’s five pillars include: Information and communications technology (ICT) risk management Incident reporting Digital operational resilience testing Third-party risk management Information sharing 2. The management, accessibility, and protection of data must be a central focus of any plan.

Resilience

Resilience Financial Services Banking Cybersecurity

Do Cyber Risks Lurk in Your Business Ecosystem?

NexusTek

OCTOBER 25, 2023

Communicate your security expectations to third parties. Email/DNS protection: This helps to defend against spammers, phishing, spoofing, and other types of malicious communications. Managed detection & response (MDR): MDR services allow a business to delegate management of specific security practices to a qualified provider.

Cybersecurity

Cybersecurity Evaluation Vulnerability Risk Management

An Introduction to FFIEC: BCM’s Gold Standard

MHA Consulting

MARCH 23, 2023

By adhering to the council’s guidelines, companies can implement best practices for risk management, cybersecurity, data protection, and business continuity planning. The FFIEC standard can be found here, and it’s completely free. Does trying to meet the rigorous FFIEC standard make sense for every organization?

BCM

BCM Impact Analysis Business Continuity Banking

Cyberrisk Management Tips for Businesses Amid the Russia-Ukraine War

Risk Management Monitor

MARCH 4, 2022

Concerns about escalating cyber activity around the crisis are a vivid reminder of the importance of knowing your threat model and adjusting your risk management priorities accordingly. Organizations should be asking themselves, “What does the work day look like without access to the business’ systems?” Check it out here: [link].

Management

Management Malware Cybersecurity Insurance

The Best Governance, Risk, and Compliance Software to Consider

Solutions Review

SEPTEMBER 27, 2021

AuditBoard also streamlines audit, risk, and compliance programs with an enterprise workflow engine purpose-built to automate interaction across those three lines. Enablon also allows users to establish, manage, and track Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) to better meet objectives. Navex Global.

Government

Government Audit Risk Management Hospitality

Managing Sanctions Risk from Russia’s War on Ukraine

Risk Management Monitor

MARCH 3, 2022

In a briefing yesterday, global risk consultancy Control Risks discussed some of the risk management considerations and steps companies need to take as the sanctions landscape continues to evolve. Be sure to engage with regulators, enforcement agencies, banks and insurers for guidance.

Banking

Banking Management Insurance Insurance

What is COBIT? COBIT Explained

BMC

DECEMBER 5, 2024

These frameworks offer philosophies and tangible paths forward to improve cost and resource management, measure risk, speed up customer service, and innovate analysis through predictive methods. ISACA focuses on IT governance, risk management, cybersecurity, and auditing support with standards, guidelines, and best practices.

Audit

Audit Government Technology Security

TSPs: Making the Case to Invest in Risk and Resiliency

Fusion Risk Management

SEPTEMBER 12, 2022

Even if it is difficult to use that regulatory hammer to secure funding for budget to purchase technology, this should not stop a progressive organization from using effective risk management disciplines to run their programs and serve their customers. Ability to Procure Cyber Insurance. Supply Chain Ecosystem.

Resilience

Resilience Insurance Insurance Outsourcing

When the Ship Goes Down, You Need a Lifeboat

Swan Island Network

NOVEMBER 8, 2017

Communications, information sharing, data collection, and situational awareness updates can all be accomplished for with systems like TX360 from Swan Island Networks. The company has to exercise, including with vital partners, ahead of time to insure everyone knows the drill, and how to take the place of someone not around.

Insurance

Insurance Insurance Outage Risk Management

Adapt or Fail: Climate Change Resilience for Organizations

everbridge

MARCH 6, 2023

The current systems and solutions in place for managing climate hazards are often inadequate, and the reliance on traditional insurance has become insufficient. The Insufficiency of Traditional Insurance Organizations often rely on insurance providers to provide protection against the impacts of extreme weather events.

Resilience

Resilience All-Hazards Command Center Insurance

How Business Continuity Provides Value to A Business

Erwood Group

OCTOBER 27, 2020

The first and most obvious to many is that business continuity planning helps organizations obtain reduced premiums on insurance. In some cases, we have seen providers work closely with the client to further mitigate risk by providing additional assistance and suggestions. Let’s look at each of these and others in more detail.

Business Continuity

Business Continuity Continuity Planning Insurance Insurance

The Evolution of the Global Third-Party Infrastructure

Fusion Risk Management

JUNE 23, 2023

The idea behind having an effective third-party risk management (TPRM) program is not a newfound concept. More than 14 years ago, the Federal Deposit Insurance Corporation (FDIC) introduced the first true risk-based approach to understanding and managing third parties.

Risk Management

Risk Management Alert Resilience Communications

Continuity Strategies to Support an Enterprise Resiliency Program

eBRP

JANUARY 14, 2025

To build an Adaptive, Resilient Enterprise , organizations must move beyond conventional Business Continuity Management (BCM) approaches. Traditional BCM is often limited to tactical response plans, perceived simply as insurance policies that rarely spark high-level executive engagement.

Resilience

Resilience BCM Response Plan Disaster Recovery

The 2023 Hurricane Season Outlook

Risk Management Monitor

JUNE 13, 2023

Normal 0 false false false EN-US X-NONE X-NONE Normal 0 false false false EN-US X-NONE X-NONE As the hurricane season gets underway, the following tips can help businesses update and strengthen natural disaster recovery plans: Review your business interruption insurance. Update your current disaster recovery plan. Do a dry run.

Disaster Recovery

Disaster Recovery Insurance Insurance Emergency Response

Everything You Need to Know About Business Continuity Plans

Erwood Group

JULY 12, 2022

Insurance Contact Information. Risk Assessment Key Findings. Crisis Management Levels. Crisis Communications. Internal & External Communications plans & templates. Government, School Systems, Public transportation, Public Communications Networks, Utilities, etc.) Crisis Communications.

Continuity Planning

Continuity Planning Business Continuity BCP Disaster Recovery

Do Cyber Risks Lurk in Your Business Ecosystem?

NexusTek

OCTOBER 25, 2023

Communicate your security expectations to third parties. Email/DNS protection: This helps to defend against spammers, phishing, spoofing, and other types of malicious communications. Managed detection & response (MDR): MDR services allow a business to delegate management of specific security practices to a qualified provider.

Cybersecurity

Cybersecurity Evaluation Vulnerability Risk Management

What Does a Compliance Management System Look Like?

Reciprocity

AUGUST 15, 2022

The Federal Deposit Insurance Corp. The OCC also cautioned against interest rate risks, operational risks (again, heightened because of COVID-19), increased cybersecurity risks, compliance risks related to the Bank Secrecy Act (BSA), consumer compliance issues, and fair lending as areas of concern.

Management

Management Audit Banking Media

Important KPIs for Successful Vendor Management

Reciprocity

AUGUST 24, 2022

Every risk management program should include risks posed by your vendors. Beware, however: vendor risk management is a complex process unto itself, requiring ongoing monitoring and measurement. What Are Vendor Risk Management Metrics? What Are the Most Common Vendor Risks? Communication.

Management

Management Risk Management Cybersecurity Strategic

Choosing a Governance Risk and Compliance Tool: Constant Vigilance

Reciprocity

DECEMBER 27, 2022

GRC is an integrated approach to managing the organization’s governance, IT and security risks, and regulatory compliance functions. The three pillars of a GRC program are governance, risk management, and compliance. Risk Management. Automate Vendor Risk Management. Governance.

Government

Government Audit Risk Management Disaster Recovery

The Difference Between Strategic and Operational Risk

Reciprocity

AUGUST 17, 2022

New technologies, increasing digitization, and evolving customer demands create risks that can disrupt operations, weaken cybersecurity, and harm the organization’s reputation or financial position – and above all, leave the organization unable to achieve its business objectives. Enterprise Risk Management (ERM).

Strategic

Strategic Risk Management Mitigation Evaluation

Healthcare Under Attack: Building Resilience in the Face of an Aggressive Cyber Threat

MHA Consulting

MARCH 21, 2024

A company called Change Healthcare, which is the largest electronic clearinghouse for medical insurance payments in the country, was struck by hackers who stole patient data and encrypted company files, demanding payment to unlock them. health care system in American history.” Data breaches generally do not affect day-to-day operations.

Healthcare

Healthcare Hospitality Resilience BCM

What is Business Continuity?

Erwood Group

JULY 7, 2022

Crisis Communications. One client recently obtained a $500 Million dollar increase in insurance coverage with zero increase in premium costs. This was done based on the Business Continuity Plans and Program developed after meeting with the insurance providers and providing details of the program and progress made.

Business Continuity

Business Continuity Impact Analysis Continuity Planning Communications

Why Buying SaaS GRC Software Is a Smart Investment

Reciprocity

OCTOBER 1, 2022

As organizations and businesses around the world and across industries migrate their IT to the cloud, C-suites are faced with a new dilemma for governance, risk management and compliance (GRC) solutions: cloud versus on-premise software. That’s time and money that might be better spent elsewhere.

Government

Government Internet Risk Management Cloud Computing

Unprecedented Wildfires Devastate Canada, Leave Eastern U.S. Blanketed in Smoke

Risk Management Monitor

JUNE 9, 2023

For businesses, take this as a reminder to examine how your organization will handle fallout from wildfires, for example, reviewing your property insurance, business interruption coverage, disaster recovery plans or emergency communications procedures.

Disaster Preparedness

Disaster Preparedness Sports All-Hazards Alert

DHS Announces New Grants to Bolster Cybersecurity Under Infrastructure Law

Security Industry Association

SEPTEMBER 20, 2022

Last week the Department of Homeland Security (DHS) announced a joint effort between the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Emergency Management Agency (FEMA) to provide new cybersecurity grants authorized and funded under the Bipartisan Infrastructure Law. Reference Links.

Cybersecurity

Cybersecurity Telecommunications Authentication Government

The Relationship Between Internal Controls and Internal Audits

Reciprocity

OCTOBER 7, 2024

As part of this analysis, organizations must consider the likely impact and probability of each risk to minimize any possible impact or damage. Risk assessments provide a basis for risk management and mitigation. Without effective internal controls, the company is more susceptible to risk and fraud.

Audit

Audit Corporate Governance Evaluation Activation

The Relationship Between Internal Controls and Internal Audits

Reciprocity

OCTOBER 7, 2024

As part of this analysis, organizations must consider the likely impact and probability of each risk to minimize any possible impact or damage. Risk assessments provide a basis for risk management and mitigation. Without effective internal controls, the company is more susceptible to risk and fraud.

Audit

Audit Corporate Governance Evaluation Activation

Protecting Your Business From Interruption: The Value of Business Continuity Management

Castellan

DECEMBER 1, 2021

Many of these protections are focused on isolated risks; for example, if a company has a critical product that has to be shipped no matter what – they may choose to store that product in two locations, thereby protecting it. This frequently resides under the CFO with a Director, such as Director of Risk Management or Insurance.

Business Continuity

Business Continuity Management Activation Risk Management

Why I no longer look at financial impacts when conducting a BIA

Plan B Consulting

NOVEMBER 24, 2017

For many, or even most organisations, if you cannot buy from the organisation, then with a bit of communication you can persuade your customers to hold on and buy from you when you are up and running. One insurance company I worked with calculated the cost of downtime as being $30 BILLION.

Fashion

Fashion Banking Consulting BCM

Why I no longer look at financial impacts when conducting a BIA

Plan B Consulting

NOVEMBER 24, 2017

For many, or even most organisations, if you cannot buy from the organisation, then with a bit of communication you can persuade your customers to hold on and buy from you when you are up and running. One insurance company I worked with calculated the cost of downtime as being $30 BILLION. Comments: Chris Green FBCI MSc.

Fashion

Fashion Banking Consulting BCM

Third-Party Due Diligence Best Practices

Reciprocity

OCTOBER 7, 2024

Common Third-Party Security Risks and Challenges The top five obstacles companies experience during the Third Party Risk Management (TPRM) process are listed below. The number and complexity of third-party collaborations for modern enterprises is a critical problem in controlling third-party risk.

Cybersecurity

Cybersecurity Audit All-Hazards Risk Management

Change Healthcare’s 2024 Data Breach: Key Risk Management Lessons

Risk Management as a Career: A Guide for BCM Professionals

Trending Sources

The Best Risk Management Software to Consider for 2021 and Beyond

RIMS ERM Conference 2021: Lloyd’s Chairman on the Vital Role of Risk Management in Fighting Climate Change

Hurricane Risk Management: Key Considerations Before and After Storms Strike

Adversarial Risk Management

Understanding New York’s New Insurance Disclosure Requirements

Impact tolerance in operational resilience: A guide for businesses

Understand Your Customers to Build a World-Class Risk Management Program

5 Steps to Implement Enterprise Risk Management (ERM)

5 Steps to Implement Enterprise Risk Management (ERM)

What Is Enterprise Risk Management & Its Importance

The Cost of Non-Compliance: Why Third-Party Risk Should Be a Top Priority in 2025

5 Key Takeaways from the EU’s Digital Operational Resilience Act (DORA)

Do Cyber Risks Lurk in Your Business Ecosystem?

An Introduction to FFIEC: BCM’s Gold Standard

Cyberrisk Management Tips for Businesses Amid the Russia-Ukraine War

The Best Governance, Risk, and Compliance Software to Consider

Managing Sanctions Risk from Russia’s War on Ukraine

What is COBIT? COBIT Explained

TSPs: Making the Case to Invest in Risk and Resiliency

When the Ship Goes Down, You Need a Lifeboat

Adapt or Fail: Climate Change Resilience for Organizations

How Business Continuity Provides Value to A Business

The Evolution of the Global Third-Party Infrastructure

Continuity Strategies to Support an Enterprise Resiliency Program

The 2023 Hurricane Season Outlook

Everything You Need to Know About Business Continuity Plans

Do Cyber Risks Lurk in Your Business Ecosystem?

What Does a Compliance Management System Look Like?

Important KPIs for Successful Vendor Management

Choosing a Governance Risk and Compliance Tool: Constant Vigilance

The Difference Between Strategic and Operational Risk

Healthcare Under Attack: Building Resilience in the Face of an Aggressive Cyber Threat

What is Business Continuity?

Why Buying SaaS GRC Software Is a Smart Investment

Unprecedented Wildfires Devastate Canada, Leave Eastern U.S. Blanketed in Smoke

DHS Announces New Grants to Bolster Cybersecurity Under Infrastructure Law

The Relationship Between Internal Controls and Internal Audits

The Relationship Between Internal Controls and Internal Audits

Protecting Your Business From Interruption: The Value of Business Continuity Management

Why I no longer look at financial impacts when conducting a BIA

Why I no longer look at financial impacts when conducting a BIA

Third-Party Due Diligence Best Practices

Stay Connected