Security News

Understanding the connection between GRC and cybersecurity. While cybersecurity focuses on the technical side of protecting systems, networks, devices, and data, GRC is the tool that will help the entire organization understand and communicate how to do it.

From a GRC standpoint, companies can achieve data quality by creating rules and policies so the entire organization can use that data in the same ways. How GRC empowers organizations achieve high-quality data.

Consider how the pandemic - a health and safety risk - created a downstream impact that opened the door for related risks: IT risks associated with remote work, corruption related to supply chain issues, and workforce management issues. The conversation around ESG - environmental, social and governance - in risk management has grown in recent years and shows no signs of slowing down.

To select a suitable GRC solution for your business, you need to think about a variety of factors. When organizations try to select an enterprise or standalone GRC solution or a number of solutions to use in concert, a few key elements are worth deep discussion: how the solution(s) fits into overall IT strategy, what the desired use of the solution(s) is and how the solution(s) can help digitally transform the organization's cyber GRC efforts.

With a myriad of risks and limited security budgets, how do organizations decide which projects to prioritize? Many governance, risk management and compliance professionals believe risk quantification is the answer. Risk quantification also enables risk professionals to communicate risk to leaders and other stakeholders in a shared language everyone understands: dollars and cents.

A forecast from IDC shows global GRC revenues growing from $11.3 billion in 2020 to nearly $15.2 billion in 2025. All categories of GRC solutions are expected to increase in revenues.

An effective GRC program must be more than focused on security, it also needs to meet privacy, business, and IT requirements. Every GRC program should be tailored to the needs and frameworks of the organization, whether they seek most to comply with industry and privacy regulations or to reduce corporate risk to protect customer data or infrastructure.

Microsoft and SES, in partnership with GovSat and UK-based solutions provider GRC, came together to demonstrate how Microsoft Azure Machine Learning and Artificial Intelligence capabilities can be brought directly to end-users deployed globally in a highly secure, reliable way while maintaining network sovereignty - allowing users to exploit key Azure workloads regardless of location and drastically boosting the efficiency of critical missions. In these demonstrations the Azure Stack Mini R device was connected to a quick deployable tactical satcom terminal from GRC through the secure SATCOM connection on GovSat-1 satellite, and sent directly to Azure UK via the SES Cloud Direct service, giving connected and disconnected access to Azure services.

OneTrust GRC provides a centralized platform for organizations to stay in control of these regulatory changes while monitoring and managing governance, risk, and compliance efforts. The technology highlights what risks the business needs to be aware of and offers controls to mitigate risk where possible.

Exterro announced it has acquired AccessData, a provider of digital forensic investigation technology. By combining forces with AccessData, Exterro can now provide companies, government agencies, law enforcement, law firms and legal service providers with the only solution available to address all Legal GRC and digital investigation needs in one integrated platform.