GDPR Defined The General Data Protection Regulation (GDPR) is a data privacy and security law that was passed by the European Union back in 2018. It quickly made its reputation as one of the toughest laws for its scope and also for its enforcement. We’ve had...
GRC Defined GRC is an acronym for governance, risk, and compliance; it’s a term that refers to an organization’s strategy and management for each of those three components. GRC is a structured approach to managing these various aspects of great importance to an organization’s success and...
Risk Monitoring Overview Risk monitoring is a crucial step in the total risk management process. Unfortunately, there is never a true end to the risk management process; risk monitoring will always be necessary to understand the risks an organization is facing and how any implemented changes...
What is Resource Allocation Resource allocation, in the scope of risk management, is the process of how an organization distributes its resources across the company for specific uses. This includes assigning personnel to specific tasks or projects, machines or equipment, and of course monetary resources as...
Developing an action plan for cyber-physical systems is an integral part of a complete risk management program that continues to grow in importance. According to Gartner, “By 2023, 75% of organizations will restructure risk and security governance to address new cyber-physical systems (CPS) and converged...
How can we make eco-friendly business decisions that also benefit risk management goals? This is a question a lot of companies are asking lately, for several reasons. Many companies feel a responsibility to minimize their contribution to global warming; others may have more selfish reasons...
Managing risk is an essential component of every organization accomplishing its key objectives effectively. Risk management not only requires a reliable process to capture risks, but also needs a method to document and administer the organization's response. An appropriate risk management tool always helps the risk...
Risk Management Overview Risk management is the process of identifying, assessing, and controlling risks. This is crucial to the success of an organization as it impacts decision making and influences response to different incidents. An effective risk management plan allows you to navigate an environment of...
What is Risk Scoring? Risk scoring is the process of attaining a calculated score that tells you how severe a risk is, based off of several factors. Without a standard model for risk scoring, risk and security teams would continually struggle to communicate internally about how...
The Need for Policy and Document Management Today we’re discussing a vital component of compliance: policy and document management. By now, we all know the importance of being compliant… but is that enough on its own? We could just as easily ask the old philosophical question...