BLOG

  By Matt Kelly July 31, 2017  \ Well, it’s started. Congress and the Securities and Exchange Commission have begun plotting ways to roll back corporate compliance and governance practices. The Sarbanes-Oxley Act is a top priority. New SEC chairman Jay Clayton fired the starting ...more

Don't Kill The Messenger! Cybersecurity professionals please take note! We have had an astounding level of interest in our global initiative to help our Members of The GRC Sphere (www.GRCsphere.org) to "stamp out ordinal-based risk assessment techniques" based on the following facts and ...more

If you are involved with any risk assessment technique that uses ordinal-based values or associated heat maps, you need to read this! For over 4 years we have been working to educate risk assessment teams on the major need to stamp out ordinal-based risk assessment practices and the related ...more

Like governance and risk management, we believe that Compliance Management is a special form of business intelligence and it's not exactly easy. Here is how we define it... | |Enterprise compliance management spans a set of structured practice disciplines that generate shareholder value ...more

Like governance, and compliance management, we believe that Risk Management is a special form of business intelligence and it's not easy to master. Here's how we define it: | | Enterprise risk management spans a set of structured practice disciplines  that generate shareholder value by ...more

We believe that "governance", like risk management and compliance management is a special form of business intelligence and it's not exactly easy to master. Here's how we define it... | | | Enterprise governance spans a set of structured practice disciplines  that  generate ...more

The EU's General Data Protection Regulation (GDPR) is the most important change in data privacy regulation in 20 years -  we're here to help make sure that you're prepared​. After four years of preparation and debate the GDPR was finally approved by the EU Parliament on 14 April ...more

Water ISAC, a nonprofit organization established in 2002, is the information sharing and operational arm of the U.S. water and wastewater sector. WaterISAC helps members strengthen their physical and cyber security, recover from natural and man-made disasters and improve overall preparedness and ...more

The ST, PT and OTRB ISACs are trusted, transportation sector specific, 24/7 incident reporting and threat warning entities that establish the transportation sector's specific information/intelligence requirements for incidents, threats and vulnerabilities. Based on its sector-focused subject ...more

The SC ISAC offers the most comprehensive forum for collaboration on critical security threats, incidents and vulnerabilities to the global supply chain. Its mission is to facilitate communication among supply chain-dependent industry stakeholders; foster a partnership between the private and ...more