Gap Analysis and Management - Continuity Professionals Pulse

Building Resilience and Compliance in Finance: Insights from PagerDuty’s Lee Fredricks by Laura Chu

PagerDuty

JANUARY 16, 2025

The first step for most companies is a gap analysis to spot and address any weaknesses. Strong incident management is just as important. How can AI and automation streamline compliance and incident management? How does the PagerDuty Operations Cloud help financial entities manage compliance and resilience?

Resilience

Resilience Gap Analysis Financial Services Audit

How to Comply with FedRAMP: A Practical Guide to Authorization

Reciprocity

DECEMBER 17, 2024

These tools can help centralize policy management and streamline documentation. Security Information Event Management (SIEM), vulnerability scanning/remediation, Intrusion Detection Systems/Controls, Security Operations personnel etc.) Consider tools that centralize and streamline the evidence collection process. Request a demo today.

Authorization

Authorization Gap Analysis Audit Vulnerability

GDPR Compliance Checklist: How ZenGRC Automates Your Data Privacy Program

Reciprocity

APRIL 8, 2025

Key GDPR Compliance Challenges for Organizations Meeting GDPR requirements presents significant challenges that can strain resources and create compliance gaps when managed through manual processes. Understanding these challenges is the first step toward implementing effective solutions.

Activation

Activation Authorization Strategic Audit

Webinars

Are Robots Replacing You? Keeping Humans in the Loop in Automated Environments

MORE WEBINARS

ISO 27001 Requirements Checklist: Steps and Tips for Implementation

Reciprocity

OCTOBER 1, 2022

The ISO 27001 standard for management of information systems helps organizations of any size to manage the security of data assets such as employee information, financial information, intellectual property, and third-party information. 8 – Asset Management. 16 – Information Security Incident Management.

Gap Analysis

Gap Analysis Audit Asset Management Evaluation

Operational Resilience Self-Assessment: Achieving the March 2022 Deadline

Castellan

NOVEMBER 29, 2021

In terms of self-assessment, regulators do not expect firms to build out a full operational resilience capability ; instead, they are looking for a gap analysis. So, by 31 March 2022, I would expect that you will be able to set out a compelling gap analysis. Who will develop and manage the capabilities?

Resilience

Resilience Gap Analysis Authorization Business Services

The Most Overlooked Security Issues Facing the Financial Services

Solutions Review

SEPTEMBER 8, 2023

Please note: usually when the initial gap analysis is done (remember step 1), you end up with a long list of deviations. Ongoing risk management Storage and backup security demands active, ongoing risk management. Implementation With knowledge accrued and threats defined, the rubber needs to meet the road.

Financial Services

Financial Services Security Backup Audit

Audit Checklist for SOC 2

Reciprocity

DECEMBER 21, 2022

SOC 2 is a set of standards developed by the American Institute of CPAs (AICPA) for managing client data based on five “trust service principles”: security, availability, processing integrity, confidentiality, and privacy. Providers of corporate intelligence, analytics, and management services. Change management.

Audit

Audit Gap Analysis Security Cybersecurity

ISO 27001 Certification Requirements & Standards

Reciprocity

DECEMBER 21, 2022

Deciphering the various numbers can be confusing at first, but each standard is numbered and deals with a specific facet of managing your company’s information security risk management efforts. The 27001 standard provides requirements for businesses to implement and operate an Information Security Management System, or ISMS.

Audit

Audit Accreditation Gap Analysis All-Hazards

DBMS vs. RDBMS

Pure Storage

AUGUST 1, 2024

DBMS vs. RDBMS by Blog Home Summary A database management system (DBMS) is an umbrella term for systems that store and retrieve data. A relational database management system (RDBMS) is a type of DBMS. A database management system (DBMS) is any type of system that can store and retrieve data. Here, we will explore DBMS vs. RDBMS.

Gap Analysis

Gap Analysis Application Banking Marketing

Selling Business Continuity to the C-Suite: Don’t!

Plan B Consulting

JUNE 7, 2016

This bulletin week Charlie talks about the importance of senior manager buy-in within business continuity. If business continuity is such an easy sell, why is selling business continuity to senior managers even an issue? Use the information from your BIA to make senior managers aware of the impact of an incident occurring.

Business Continuity

Business Continuity Gap Analysis BCM Consulting

Selling Business Continuity to the C-Suite: Don’t!

Plan B Consulting

JUNE 7, 2016

This bulletin week Charlie talks about the importance of senior manager buy-in within business continuity. If business continuity is such an easy sell, why is selling business continuity to senior managers even an issue? Use the information from your BIA to make senior managers aware of the impact of an incident occurring.

Business Continuity

Business Continuity Gap Analysis BCM Consulting

Preparation Continues for the Digital Operational Resilience Act

Fusion Risk Management

JANUARY 5, 2023

The old way of managing risk and resilience programs is no longer effective or efficient, and regulators have taken note. Risk Management. To meet the DORA’s standards, firms must update their technology risk management governance. Supply Chain Management and Third-Party Risk. The 5 Pillars of the DORA.

Resilience

Resilience Financial Services Outsourcing Audit

‘Third Generation Business Continuity’

Plan B Consulting

FEBRUARY 2, 2018

This week I travelled to London to attend a meeting with a new client who we are conducting a gap analysis for, based on their present level of business continuity. All parts of the lifecycle were there, there were checklists galore, detailed analysis in the BIA and a good robust framework for the on-going management of BC.

Business Continuity

Business Continuity Audit Gap Analysis Travel

‘Third Generation Business Continuity’

Plan B Consulting

FEBRUARY 2, 2018

This week I travelled to London to attend a meeting with a new client who we are conducting a gap analysis for, based on their present level of business continuity. All parts of the lifecycle were there, there were checklists galore, detailed analysis in the BIA and a good robust framework for the on-going management of BC.

Business Continuity

Business Continuity Audit Gap Analysis Travel

Customer Insights 2023: Fusion’s March Community Exchange Round Up

Fusion Risk Management

APRIL 27, 2023

Third-Party Risk Management Understanding which third parties play a critical role in your ability to deliver products or services is crucial so that you can prioritize efforts and mitigate issues as they arise. During this Community Exchange session, Fusion’s product experts dove into our Communities functionality.

Risk Management

Risk Management Gap Analysis Resilience Mitigation

The Digital Operational Resilience Act is Finalized – Now is the Time to Act

Fusion Risk Management

AUGUST 18, 2022

The DORA is landmark legislation that is the first of its kind that focuses on how regulated entities manage their ICT risk. Leverage a gap analysis to understand where your organization can strengthen current processes or add new ones to meet the range of proposed requirements for your ICT risk management framework. .

Resilience

Resilience Authorization Gap Analysis Risk Management

Choosing a Governance Risk and Compliance Tool: Constant Vigilance

Reciprocity

DECEMBER 27, 2022

Managing all your governance, risk, and compliance (GRC) needs is no easy task. GRC is an integrated approach to managing the organization’s governance, IT and security risks, and regulatory compliance functions. The three pillars of a GRC program are governance, risk management, and compliance. Risk Management.

Government

Government Audit Risk Management Disaster Recovery

5 Steps To Developing A Corporate Compliance Program

Reciprocity

DECEMBER 19, 2022

Although corporate compliance can feel overwhelming at first, corporate compliance programs offer a sound foundation for business strategy and risk management. Effective compliance requires the support of senior management. The larger your organization grows, the more regulations and compliance burdens you encounter.

Audit

Audit All-Hazards Gap Analysis Healthcare

The 5 Golden Rules of When Business Continuity Software Goes Bad

Plan B Consulting

AUGUST 22, 2022

We use Castellan to manage our own ISO 22301 certification. Business continuity software usually has additional functionality so that you can model data, see recovery critical paths, do gap analysis against existing application RTOs and RPOs, and compare them against the organisation requested RTOs and RPOs.

Business Continuity

Business Continuity Gap Analysis Consulting Activation

The 5 Golden Rules of When Business Continuity Software Goes Bad

Plan B Consulting

AUGUST 22, 2022

We use Castellan to manage our own ISO 22301 certification. Business continuity software usually has additional functionality so that you can model data, see recovery critical paths, do gap analysis against existing application RTOs and RPOs, and compare them against the organisation requested RTOs and RPOs.

Business Continuity

Business Continuity Gap Analysis Consulting Activation

RTO vs. RPO: What’s the Difference and How are They Used?

Castellan

AUGUST 18, 2021

According to the Federal Emergency Management Agency (FEMA), about 25% of businesses do not re-open after disasters. Email application: 4 hours Finance systems and services: 1-2 days Customer Relationship Management System (CRM): 1 day. However, here are some RTO examples. What would these same RTOs look like for your organization?

Disaster Recovery

Disaster Recovery Backup Business Continuity Gap Analysis

The 5 Golden Rules of When Business Continuity Software Goes Bad

Plan B Consulting

AUGUST 22, 2022

We use Castellan to manage our own ISO 22301 certification. Business continuity software usually has additional functionality so that you can model data, see recovery critical paths, do gap analysis against existing application RTOs and RPOs, and compare them against the organisation requested RTOs and RPOs.

Business Continuity

Business Continuity Gap Analysis Consulting Activation

5 Steps towards an Actionable Risk Appetite

LogisManager

JANUARY 12, 2023

Risk appetite is a higher-level statement that considers the broad levels of risk that management deems acceptable. For a risk appetite, management has decided it is willing to accept small losses in 15% of investments it has deemed ‘risky.’ Risk Appetite vs. Risk Tolerance. From here, we can move on to an associated tolerance range.

Acceptable Risk

Acceptable Risk Strategic Activation Mitigation

The SEPA Cyber Attack a Case Study

Plan B Consulting

JANUARY 18, 2021

Providing contradictory information in an incident is poor incident management, and within the same website, plays into a narrative of poor communications. Those of you who have yet to prepare your organisation for managing an incident and put in place the basics now is the time to do so.

Communications

Communications Media Government Publishing

The SEPA Cyber Attack a Case Study

Plan B Consulting

JANUARY 18, 2021

Providing contradictory information in an incident is poor incident management, and within the same website, plays into a narrative of poor communications. Those of you who have yet to prepare your organisation for managing an incident and put in place the basics now is the time to do so. For more information click here.

Communications

Communications Media Government Publishing

Guide: Complete Guide to the NIST Cybersecurity Framework

Reciprocity

OCTOBER 9, 2024

For almost ten years, NIST has been at the forefront of developing comprehensive cybersecurity risk management frameworks. These families categorize the wide array of cybersecurity measures recommended for robust information security management. PM – Program Management: Oversight and management of security programs.

Cybersecurity

Cybersecurity Audit Risk Management Vulnerability

Guide: Complete Guide to the NIST Cybersecurity Framework

Reciprocity

OCTOBER 9, 2024

For almost ten years, NIST has been at the forefront of developing comprehensive cybersecurity risk management frameworks. These families categorize the wide array of cybersecurity measures recommended for robust information security management. PM – Program Management: Oversight and management of security programs.

Cybersecurity

Cybersecurity Audit Risk Management Vulnerability

Identifying the Optimal Process and Department Level to Perform a Business Impact Analysis

Fusion Risk Management

OCTOBER 22, 2024

In the business continuity management lifecycle, conducting a business impact analysis (BIA) is crucial for understanding the potential impacts of disruptions. First, let’s start with a few definitions: Business Impact Analysis: Process of analyzing business processes and the effect that a business disruption might have on them.

Impact Analysis

Impact Analysis Activation Continuity Management Lifecycle Gap Analysis

Embracing regulatory resilience

everbridge

MARCH 6, 2025

It requires collaboration across departments, from IT to risk management to the C-suite, and thats not always easy to coordinate. A strong regulatory framework supports business resilience by establishing protocols for crisis management, incident reporting, and system recoveryall of which are critical in todays unpredictable landscape.

Resilience

Resilience Gap Analysis Outage Strategic

Continuity Professionals Pulse

Building Resilience and Compliance in Finance: Insights from PagerDuty’s Lee Fredricks by Laura Chu

How to Comply with FedRAMP: A Practical Guide to Authorization

Webinars

Trending Sources

GDPR Compliance Checklist: How ZenGRC Automates Your Data Privacy Program

Webinars

ISO 27001 Requirements Checklist: Steps and Tips for Implementation

Operational Resilience Self-Assessment: Achieving the March 2022 Deadline

The Most Overlooked Security Issues Facing the Financial Services

Audit Checklist for SOC 2

ISO 27001 Certification Requirements & Standards

DBMS vs. RDBMS

Selling Business Continuity to the C-Suite: Don’t!

Selling Business Continuity to the C-Suite: Don’t!

Preparation Continues for the Digital Operational Resilience Act

‘Third Generation Business Continuity’

‘Third Generation Business Continuity’

Customer Insights 2023: Fusion’s March Community Exchange Round Up

The Digital Operational Resilience Act is Finalized – Now is the Time to Act

Choosing a Governance Risk and Compliance Tool: Constant Vigilance

5 Steps To Developing A Corporate Compliance Program

The 5 Golden Rules of When Business Continuity Software Goes Bad

The 5 Golden Rules of When Business Continuity Software Goes Bad

RTO vs. RPO: What’s the Difference and How are They Used?

The 5 Golden Rules of When Business Continuity Software Goes Bad

5 Steps towards an Actionable Risk Appetite

The SEPA Cyber Attack a Case Study

The SEPA Cyber Attack a Case Study

Guide: Complete Guide to the NIST Cybersecurity Framework

Guide: Complete Guide to the NIST Cybersecurity Framework

Identifying the Optimal Process and Department Level to Perform a Business Impact Analysis

Embracing regulatory resilience

Stay Connected