Amid a wider range of issues to handle, a majority of board members and senior executives responsible for their organization’s cyber risk management had less than a day in the last year to spend focused on cyber risk issues. The findings form part of a new report published by Marsh and Microsoft.
Research by Alina Andronache from the Brunel Business School, Brunel University, looks at the reasons why financial sector organizations should consider aligning cybersecurity management with enterprise risk management and proposed a framework for achieving this.
A new resource from ISACA, ‘Managing Third-Party Risk: Cyberrisk Practices for Better Enterprise Risk Management’ provides information and advice to help organizations better manage third-party IT risks.
According to a Deloitte extended enterprise risk management (EERM) survey, as better management of third party risk has been viewed as a transformation opportunity, boards and senior leadership have grown to have ultimate responsibility for EERM in more than three-quarters of respondent organizations.
A survey of UK GDPR decision-makers conducted on behalf of Egress, has found that 52 percent of businesses are not fully compliant with the regulation, more than a year after its implementation. The survey also found that 37 percent of respondents had reported an incident to the ICO in the past 12 months, with 17 percent having done so more than once.
New GRC survey uncovers mixed levels of executive confidence in organizations’ ability to manage risks, map ownership and identify third-party vulnerabilities.
Lecio de Paula discusses changing risks associated with privacy and security and how convergence means that organizations need to consider taking a more holistic approach to managing these two aspects of data protection.
ASIS International has published a new guidance document for enterprise security risk management (ESRM), claimed to be the first strategic security management tool of its kind, ‘elevating the security function by establishing a partnership between security professionals and business leaders to manage security risks’.
The need for cyber due diligence in a merger or acquisition of a business is more relevant than ever before. Connor Lattimer, Associate Director at Control Risks, explores the subject, and offers some pointers for risk managers.
The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.
Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.
