Continual Improvement, Evaluation and Risk Management

Empowering Credit Unions: Insights and Actions for NCUA’s 2023 Supervisory Priorities

LogisManager

AUGUST 1, 2023

The National Credit Union Administration (NCUA) has recently released its priorities and areas of focus for the 2023 examinations, which include Interest Rate Risk, Credit Risk, and Information Security Risk. The ISE was developed to assess credit unions' information security practices and procedures.

Risk Management

Risk Management Banking Mitigation Activation

Unlocking Climate Change Resilience Through Critical Event Management and Public Warning

everbridge

NOVEMBER 2, 2021

ANALYZE – Evaluate actions taken and understand patterns to improve disaster risk reduction. Every severe weather emergency response generates valuable data that is used in the continuous improvement process for risk management. Planning for the Future, Together.

Resilience

Resilience Risk Reduction Management Command Center

ISO 22336: The new standard for organizational resilience – A leader’s guide

everbridge

NOVEMBER 15, 2024

The newly released standard to help organizations build resilience–ISO 22336–is the first international standard that provides comprehensive guidelines for designing, implementing and improving resilience policies and strategies within organizations. Example 3: Continual improvement and evaluation Section 8.6

Resilience

Resilience Strategic All-Hazards Evaluation

Are You Ready for the Board and Beyond? A Self-Assessment Guide

LogisManager

NOVEMBER 12, 2024

Key Takeaways: The board and regulatory bodies evaluate alignment across departments. Misalignment can indicate risks and expose unpreparedness. LogicManager’s Risk Maturity Model (RMM) can help you standardize, measure, and improve your governance readiness. Are managers confident when discussing compliance measures?

Corporate Governance

Corporate Governance Government Audit Risk Management

A Guide to Completing an Internal Audit for Compliance Management

Reciprocity

DECEMBER 20, 2022

Regular internal audits help your organization to evaluate and improve the effectiveness of risk management, control, and governance processes. Compliance risks, however, are just one category of risk that internal auditors monitor to evaluate the effectiveness of your organization’s risk management process.

Audit

Audit Management Evaluation Activation

Case Study: Transforming LogicManager

LogisManager

OCTOBER 15, 2024

Case Study: Transforming LogicManager How LogicManager Improved Our Risk Management Practices from the Inside Out Last Updated: October 16, 2024 Every organization faces the challenge of balancing efficiency and risk management. We adopted LogicManager (LM) to enhance our performance and risk management practices.

Risk Management

Risk Management Corporate Governance Continual Improvement Strategic

How to Create and Implement an Effective Governance Model

LogisManager

JUNE 2, 2024

A strong corporate governance structure is an essential component of any risk management program. The board has a fiduciary duty to ensure that these processes are in place and effectively managed. Monitor and Evaluate Your Framework Continuous improvement is the cornerstone of long-term governance implementation success.

Government

Government Corporate Governance Evaluation Risk Management

How to Define Objectives Under ISMS?

Reciprocity

OCTOBER 7, 2024

This article explores how an ISMS supports risk management, its key elements, the main security objectives, and how to define and make your organization’s information security objectives both measurable and actionable. Lastly, we introduce ZenGRC as your comprehensive software solution for risk management and information security.

Risk Management

Risk Management Risk Reduction Audit Evaluation

How to Define Objectives Under ISMS?

Reciprocity

OCTOBER 7, 2024

This article explores how an ISMS supports risk management, its key elements, the main security objectives, and how to define and make your organization’s information security objectives both measurable and actionable. Lastly, we introduce ZenGRC as your comprehensive software solution for risk management and information security.

Risk Management

Risk Management Risk Reduction Audit Evaluation

Developing a Comprehensive Risk Assessment for Universities: A Step-by-Step Guide

BCP Builder

JULY 15, 2024

In an ever-evolving landscape of threats , universities must prioritize comprehensive risk assessments to safeguard their operations and ensure the safety of students, staff, and faculty. A thorough risk assessment identifies vulnerabilities, evaluates potential impacts, and informs the development of effective mitigation strategies.

Evaluation

Evaluation Response Plan Vulnerability Mitigation

Developing a Comprehensive Risk Assessment for Universities: A Step-by-Step Guide

BCP Builder

JULY 15, 2024

In an ever-evolving landscape of threats, universities must prioritize comprehensive risk assessments to safeguard their operations and ensure the safety of students, staff, and faculty. A thorough risk assessment identifies vulnerabilities, evaluates potential impacts, and informs the development of effective mitigation strategies.

Evaluation

Evaluation Response Plan Vulnerability Mitigation

Case Study: Transforming LogicManager

LogisManager

OCTOBER 15, 2024

Case Study: Transforming LogicManager How LogicManager Improved Our Risk Management Practices from the Inside Out Last Updated: October 16, 2024 Every organization faces the challenge of balancing efficiency and risk management. We adopted LogicManager (LM) to enhance our performance and risk management practices.

Risk Management

Risk Management Corporate Governance Continual Improvement Strategic

What Is Reputational Risk For Banks?

LogisManager

FEBRUARY 10, 2022

That’s why it’s more important than ever to ensure you’re taking the right steps to use it to your advantage, which all starts with strong risk management. In the banking industry, managing reputational risk is a complex and ongoing discipline. Just like any business, banks face a myriad of risks.

Banking

Banking Risk Management Strategic Evaluation

How to Build a More Resilient Organization: A Comprehensive Guide

Fusion Risk Management

AUGUST 27, 2024

Impact Assessment s : Evaluate the potential impact of disruptions and develop strategies to mitigate risks. Continuous Improvement: Use data-driven insights to continuously improve your processes and build long-term resilience. How can we mitigate these risks and ensure business continuity?

Resilience

Resilience Mitigation Evaluation Marketing

A Guide to RCSA

LogisManager

JANUARY 16, 2024

Inspire continuous improvement: The ultimate goal of RCSA is to help businesses continuously refine and enhance their processes to mitigate risks and support growth. Regularly addressing risks is an effective way to ensure your controls benefit your operation.

Risk Management

Risk Management Mitigation Continual Improvement Audit

Empowering Credit Unions: Insights and Actions for NCUA’s 2023 Supervisory Priorities

LogisManager

AUGUST 1, 2023

The National Credit Union Administration (NCUA) has recently released its priorities and areas of focus for the 2023 examinations, which include Interest Rate Risk, Credit Risk, and Information Security Risk. The ISE was developed to assess credit unions' information security practices and procedures.

Risk Management

Risk Management Banking Mitigation Activation

What Is an Audit of Internal Control Over Financial Reporting?

Reciprocity

SEPTEMBER 5, 2024

At its core, an ICFR audit evaluates the operating effectiveness of a company’s internal processes and controls that safeguard its financial statements from misrepresentation, either accidental or intentional. Monitoring can be done through ongoing activities, separate evaluations, or a combination of the two. But what exactly is it?

Audit

Audit Evaluation Activation Communications

ISO 27001 Certification Requirements & Standards

Reciprocity

DECEMBER 21, 2022

Deciphering the various numbers can be confusing at first, but each standard is numbered and deals with a specific facet of managing your company’s information security risk management efforts. You should design high-level policies for the ISMS that specify roles, duties, and continuous improvement standards.

Audit

Audit Accreditation Gap Analysis All-Hazards

Cybersecurity Leadership: The Complete Guide to Building and Leading an Effective Security Team

Pure Storage

OCTOBER 14, 2024

Risk Management and Assessment Leaders must evaluate potential risks to the organization and prioritize resources to mitigate them. Understanding threat landscapes, conducting risk assessments, and defining risk appetite enable leaders to protect assets while making informed, cost-effective decisions.

Cybersecurity

Cybersecurity Security Evaluation Vulnerability

Important KPIs for Successful Vendor Management

Reciprocity

AUGUST 24, 2022

Every risk management program should include risks posed by your vendors. Beware, however: vendor risk management is a complex process unto itself, requiring ongoing monitoring and measurement. What Are Vendor Risk Management Metrics? What Are the Most Common Vendor Risks? Cybersecurity.

Management

Management Risk Management Cybersecurity Strategic

What Is GRC? Governance, Risk, and Compliance Explained

BMC

DECEMBER 23, 2024

In GRC, governance is necessary for setting direction (through strategy and policy), monitoring performance and controls, and evaluating outcomes. Risk A possible event that could cause harm or loss or make it more difficult to achieve objectives. Technology doesnt have ethicspeople do.

Government

Government Audit Technology Outsourcing

Generative AI for the PagerDuty Operations Cloud by Sean Scott

PagerDuty

JUNE 1, 2023

And it’s through that lens that we’ve evaluated GenAI–not for its own sake, but by asking ourselves how it could unlock more value across the PagerDuty Operations Cloud. With any new technology, there is risk. This is why our roadmap has always focused on innovation designed to make your job easier: innovation with a purpose.

Capacity

Capacity Communications Continual Improvement Evaluation

What Is GRC? Governance, Risk, and Compliance Explained

BMC

DECEMBER 23, 2024

In GRC, governance is necessary for setting direction (through strategy and policy), monitoring performance and controls, and evaluating outcomes. Risk A possible event that could cause harm or loss or make it more difficult to achieve objectives. Technology doesnt have ethicspeople do.

Government

Government Audit Technology Outsourcing

ISO 27001 Requirements Checklist: Steps and Tips for Implementation

Reciprocity

OCTOBER 1, 2022

The core of an ISMS is rooted in the people, processes, and technology through a governed risk management program. Be aware, however, that certification is evaluated and granted by an independent third party that conducts the certification audit. Establish a risk management program and identify a risk treatment plan.

Gap Analysis

Gap Analysis Audit Asset Management Security

Data Privacy Officer Responsibilities

Solutions Review

JUNE 9, 2023

Conducting Privacy Impact Assessments (PIAs): Data Privacy Officers are tasked with conducting Privacy Impact Assessments (PIAs) to identify and assess privacy risks associated with new or existing data processing activities. They collaborate with legal teams to navigate complex legal frameworks and mitigate potential risks.

Impact Analysis

Impact Analysis Authorization Mitigation Education

Guide: Complete Guide to the NIST Cybersecurity Framework

Reciprocity

OCTOBER 9, 2024

For almost ten years, NIST has been at the forefront of developing comprehensive cybersecurity risk management frameworks. AT – Awareness and Training: Educating users and administrators about security risks and controls. PT – PII Processing and Transparency: Managing personal information with transparency and accountability.

Cybersecurity

Cybersecurity Audit Risk Management Vulnerability

Guide: Complete Guide to the NIST Cybersecurity Framework

Reciprocity

OCTOBER 9, 2024

For almost ten years, NIST has been at the forefront of developing comprehensive cybersecurity risk management frameworks. AT – Awareness and Training: Educating users and administrators about security risks and controls. PT – PII Processing and Transparency: Managing personal information with transparency and accountability.

Cybersecurity

Cybersecurity Audit Risk Management Vulnerability

What Is ESG? [Complete Guide]

LogisManager

JUNE 10, 2021

Let’s take a look at each of the 3 ESG considerations and dive into what exactly they entail: Environmental criteria evaluate how strongly a business acts as a steward of the environment. Did you know that having a strong Enterprise Risk Management (ERM) program in place helps you inherently satisfy ESG requirements and ESG factors?

Corporate Governance

Corporate Governance Government Risk Management Activation

5 Steps towards an Actionable Risk Appetite

LogisManager

JANUARY 12, 2023

Conducting a gap analysis with a risk tolerance level will help you identify emerging risks before they rise out of tolerance and it becomes clear that certain mitigation activities are no longer sufficient. By formalizing tolerances, risk managers clearly communicate a risk/reward tradeoff.

Acceptable Risk

Acceptable Risk Strategic Activation Mitigation

How to Report On ESG

LogisManager

JANUARY 3, 2022

Investors look at companies’ ESG reporting to determine if they are an organization that upholds strong values, is prepared for future challenges like climate change, and is dedicated to continually improving. This is one of the reasons why Enterprise Risk Management is crucial to implement before gathering ESG data to report on.

Corporate Governance

Corporate Governance Government Audit Activation

Business Continuity is NOT a Data Backup

Stratogrid Advisory

JULY 6, 2019

Organizational resilience is a discipline, and there is no single approach to improve it or enhance it. Many business management disciplines, including Business Continuity Management (BCM) and Operational Risk Management (ORM), contribute to continuous improvement and safeguards of the organization’s resources and strategic goals.

Business Continuity

Business Continuity Backup BCM Disaster Recovery

Business Continuity is NOT a Data Backup

Stratogrid Advisory

JULY 6, 2019

Organizational resilience is a discipline, and there is no single approach to improve it or enhance it. Many business management disciplines, including Business Continuity Management (BCM) and Operational Risk Management (ORM), contribute to continuous improvement and safeguards of the organization’s resources and strategic goals.

Business Continuity

Business Continuity Backup BCM Disaster Recovery

Creating an Effective Emergency Response Plan for Universities: A Step-by-Step Guide

BCP Builder

SEPTEMBER 16, 2024

How to Do It : Identify Potential Threats : Conduct a comprehensive risk assessment to identify potential emergencies, such as fires, earthquakes, cyberattacks, active shooters, or health crises. Evaluate Impact : Assess the potential impact of each threat on university operations and safety.

Emergency Response

Emergency Response Emergency Response Response Plan Authorization

Business Continuity Guide for Smaller Organizations

Stratogrid Advisory

JUNE 3, 2020

Additionally, the Business Impact Analysis (BIA) process outlined in Chapter 4 will leverage findings of the organizational Risk Assessment activity, which could be executed as a part of the BIA engagement. Vendor Risk Management When developing organizational continuity plans, third-party providers (e.g.

Business Continuity

Business Continuity BCM Impact Analysis BCP

Business Continuity Guide for Smaller Organizations

Stratogrid Advisory

JUNE 3, 2020

Additionally, the Business Impact Analysis (BIA) process outlined in Chapter 4 will leverage findings of the organizational Risk Assessment activity, which could be executed as a part of the BIA engagement. Risk Methodology. Vendor Risk Management. Test, Exercise and Continuously Improve.

Business Continuity

Business Continuity BCM Impact Analysis BCP

Data Privacy Awareness Month 2024: Roundup of Expert Quotes

Solutions Review

FEBRUARY 1, 2024

Economic pressures and a growing consensus that licensing and management overhead have become untenable are leading organizations toward renewed consolidation. Businesses are now looking for a single pane of glass to provide unified policy and risk management across multi-cloud, hybrid, and on-premises environments.

Healthcare

Healthcare Security Cybersecurity Government

Data Privacy Day 2024: The Definitive Roundup of Expert Quotes

Solutions Review

JANUARY 28, 2024

Economic pressures and a growing consensus that licensing and management overhead have become untenable are leading organizations toward renewed consolidation. Businesses are now looking for a single pane of glass to provide unified policy and risk management across multi-cloud, hybrid, and on-premises environments.

Healthcare

Healthcare Security Cybersecurity Government

Continuity Professionals Pulse

Empowering Credit Unions: Insights and Actions for NCUA’s 2023 Supervisory Priorities

Unlocking Climate Change Resilience Through Critical Event Management and Public Warning

Trending Sources

ISO 22336: The new standard for organizational resilience – A leader’s guide

Are You Ready for the Board and Beyond? A Self-Assessment Guide

A Guide to Completing an Internal Audit for Compliance Management

Case Study: Transforming LogicManager

How to Create and Implement an Effective Governance Model

How to Define Objectives Under ISMS?

How to Define Objectives Under ISMS?

Developing a Comprehensive Risk Assessment for Universities: A Step-by-Step Guide

Developing a Comprehensive Risk Assessment for Universities: A Step-by-Step Guide

Case Study: Transforming LogicManager

What Is Reputational Risk For Banks?

How to Build a More Resilient Organization: A Comprehensive Guide

A Guide to RCSA

Empowering Credit Unions: Insights and Actions for NCUA’s 2023 Supervisory Priorities

What Is an Audit of Internal Control Over Financial Reporting?

ISO 27001 Certification Requirements & Standards

Cybersecurity Leadership: The Complete Guide to Building and Leading an Effective Security Team

Important KPIs for Successful Vendor Management

What Is GRC? Governance, Risk, and Compliance Explained

Generative AI for the PagerDuty Operations Cloud by Sean Scott

What Is GRC? Governance, Risk, and Compliance Explained

ISO 27001 Requirements Checklist: Steps and Tips for Implementation

Data Privacy Officer Responsibilities

Guide: Complete Guide to the NIST Cybersecurity Framework

Guide: Complete Guide to the NIST Cybersecurity Framework

What Is ESG? [Complete Guide]

5 Steps towards an Actionable Risk Appetite

How to Report On ESG

Business Continuity is NOT a Data Backup

Business Continuity is NOT a Data Backup

Creating an Effective Emergency Response Plan for Universities: A Step-by-Step Guide

Business Continuity Guide for Smaller Organizations

Business Continuity Guide for Smaller Organizations

Data Privacy Awareness Month 2024: Roundup of Expert Quotes

Data Privacy Day 2024: The Definitive Roundup of Expert Quotes

Stay Connected