Your company probably uses a lot of third-party vendors - some provide IT or financial services, others deliver coffee supplies and food, while still others wash the windows and stock the restrooms. B...
Australian businesses accustomed to ‘toothless’ enforcement regimes are experiencing a rude shock. Regulators are growing teeth and are ready to bite businesses that experience lapses in compliance. H...
What do credit ratings, SecurityScorecard, and ServiceNow Vendor Risk Management have in common? Everyone is familiar with credit ratings. When you attempt to buy a car or a house, the first thing the...
Renato Cunha and Sammia Abrar are GRC analysts at Nexen Energy, an oil and gas company that develops resources in Canada, the United States, the North Sea, and West Africa. At Knowledge18, they shared...
Australia’s financial services industry resembles a cruise ship caught in hurricane-force winds. Nearly every day revelations from the Royal Commission into Misconduct in the Banking, Superannuation a...
Managing the Risk Management Framework (RMF) can be a daunting task, even with documentation! And, especially so, if you are not sure where you are in the six-step process: CategorizeSelectImplementAs...
This is a six minute video providing an Overview of ServiceNow's GRC applications.
This is the first of 3 blogs discussing new GRC features in the Kingston release. I've started with one of the most interesting - GRC Continuous Monitoring and the Configuration Compliance application...
As most of you are hopefully aware, as of May 2018 any organization that handles personal data of a subject in the European Union (EU) must comply with the GDPR. Don't mistake this for a regulation th...
I'd like to kick off my new weekly blog, aptly titled "ServiceNow GRC Topic of the Week", with a timely subject — Cyber Awareness and GRC. The theme for week 2 of Cyber Awareness Month, according to t...
Gone are the days when enterprises could afford to build a firewall around their kingdom to keep attackers out and all data in. The perimeter has become porous and the enterprise has learned to levera...
We are very pleased to announce the Istanbul market release of Governance, Risk and Compliance. GRC is designed to enable customers extend their investments in Service Management to automate cross fun...
SecOps is mostly about firefighting today, with too much noise, not enough signal, and not enough people to dig in when the signal is found. Quite honestly, this had led to a hero culture. The heroes ...
Welcome to the first of what will hopefully be many posts on security topics impacting organizations of all types. Those who know me know that I spend much of my time on the road speaking to a large n...
on:
Third-Party Risk Management (TPRM) Smart Assessmen...
on:
ESGM - Quick Start Guides: ESG Content Accelerator...
on:
FAQ: What's new with Risk products in Yokohama
on:
Knowledge25 - Registration is open - and check out...
