With an increased dependency on third-parties in today’s age of digital transformation, understanding the cyber risk and compliance posture of enterprise vendors has never been more critical to your o...
For far too long, cybersecurity leaders have struggled to translate cyber risk into the economic language of business. They’ve been lost trying to protect the business without any concrete understandi...
Imagine the ability to see your enterprise risks in financial terms, trended over time, and based on the impact to your business. You’d then be able to identify when you’re above your risk threshold a...
Did you know that a breach that includes a third party will cost you 12% more1 than if it did not include a third party – almost $4 million? But it's not just the risk of a breach, anyone familiar wit...
Your company probably uses a lot of third-party vendors - some provide IT or financial services, others deliver coffee supplies and food, while still others wash the windows and stock the restrooms. B...
Australian businesses accustomed to ‘toothless’ enforcement regimes are experiencing a rude shock. Regulators are growing teeth and are ready to bite businesses that experience lapses in compliance. H...
What do credit ratings, SecurityScorecard, and ServiceNow Vendor Risk Management have in common? Everyone is familiar with credit ratings. When you attempt to buy a car or a house, the first thing the...
Renato Cunha and Sammia Abrar are GRC analysts at Nexen Energy, an oil and gas company that develops resources in Canada, the United States, the North Sea, and West Africa. At Knowledge18, they shared...
Australia’s financial services industry resembles a cruise ship caught in hurricane-force winds. Nearly every day revelations from the Royal Commission into Misconduct in the Banking, Superannuation a...
Managing the Risk Management Framework (RMF) can be a daunting task, even with documentation! And, especially so, if you are not sure where you are in the six-step process: CategorizeSelectImplementAs...
This is a six minute video providing an Overview of ServiceNow's GRC applications.
This is the first of 3 blogs discussing new GRC features in the Kingston release. I've started with one of the most interesting - GRC Continuous Monitoring and the Configuration Compliance application...
As most of you are hopefully aware, as of May 2018 any organization that handles personal data of a subject in the European Union (EU) must comply with the GDPR. Don't mistake this for a regulation th...
I'd like to kick off my new weekly blog, aptly titled "ServiceNow GRC Topic of the Week", with a timely subject — Cyber Awareness and GRC. The theme for week 2 of Cyber Awareness Month, according to t...
on:
Managing control objective changes with the new IR...
on:
Third-Party Risk Management (TPRM) Smart Assessmen...
on:
ESGM - Quick Start Guides: ESG Content Accelerator...
on:
FAQ: What's new with Risk products in Yokohama
on:
Knowledge25 - Registration is open - and check out...
