- Chief Compliance Officer and VP of Legal Affairs, Arrow Electronics
Provided by ServiceNow2024-11-06T17:05:00
Each business team has its own processes, tools, metrics, data, and reporting assignments. Any collaborative efforts to manage enterprise risk holistically are ad-hoc and manual. The practice of using more external services in order to consume leading technology (software, cloud, infrastructure, data, and more as-a-service) combined with engaging and depending on increasing external service providers has resulted in a major expansion in the management of both threats and vulnerabilities to the enterprise. At the same time, organization’s (one organization, multiple functions) security, risk, and IT functions are challenged to do more, often with less. The impact: risk, administrative overhead, and operational gaps as a result of organization siloing grow unmitigated, and in some cases, unmonitored.
2025-04-08T16:47:00Z By Aaron Nicodemus
The U.K. government wants directors and boards of directors to become more actively involved in cybersecurity risks facing public and private companies, as the world faces “alarming” threats from criminal gangs and malicious nation-states. Though many organizations take cybersecurity seriously, the U.K. government says they do not place management of ...
2025-03-28T18:45:00Z By Aaron Nicodemus
The Securities and Exchange Commission’s Republican leadership is abandoning the climate-related disclosure rule package passed last year by Democrats, hoping that the courts will kill regulations already on life support.
2025-03-28T14:22:00Z By Thomas Graham, CW guest columnist
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
2024-08-07T05:54:00Z Provided by Theta Lake
The message from the regulators is clear - having an off-channel policy for mobile communications is not good enough.
2024-05-05T17:30:00Z Provided by ServiceNow and KPMG
To help investors gain a better understanding of cyber risk, the US Securities and Exchange Commission (SEC) has created sweeping new rules—forcing companies to take a more proactive approach to cybersecurity.
2024-04-22T19:00:00Z Provided by LogicGate
Spending countless hours tracking down controls evidence for your audit and compliance activities is an annoyance at best and a major drag on productivity and effectiveness at worst.
Site powered by Webvision Cloud