Security News
Survey respondents were asked to rate 36 macroeconomic, strategic and operational risks, including new risks that emerged this year related to the pandemic and social justice. "More than ever, 2020 demonstrated that organizations can no longer afford a reactive approach to risk management. Pandemic risk loomed on the horizon for a long time - it was a matter of 'when,' not 'if,'" said Jim DeLoach, a Protiviti managing director.
Find out what your company could risk by not getting cybersecurity audits. Steven Wertheim, president of SonMax Consultants, in his CPA Journal article Auditing for Cybersecurity Risk makes a strong case that auditing should be a part of every cybersecurity defense program.
Risk management is more than recovery from a cyberattack. Another equally important function of risk management is that it can be considered a proactive methodology used to identify risks in an organization's cybersecurity framework.
Third-party risk management professionals increasingly do not trust that security questionnaires provide sufficient information to properly understand and act on their third-party risk, according to RiskRecon and Cyentia Institute. As a result, the study found more enterprises are moving towards data-driven third-party risk management programs.
Throughout her career, Fernandez has prioritized customer-centricity and built an impressive record of producing compelling contemporary digital initiatives, thought-leadership campaigns and global marketing activities. Fernandez joins Fusion from Regulatory DataCorp, Inc., a global leader in compliance screening, where she served as Global Head of Marketing and led the company's go-to-market activities.
Reciprocity announced new capabilities within ZenGRC Risk Management. ZenGRC combines risk and compliance management to allow customers to identify, monitor, and mitigate risks.
Paragon is investing in the creation of a new Sector offering risk management solutions for its clients. Paragon Risk Management will offer a wide range of solutions including: Risk Advisory, Security Management, Industrial Security, Protection, Emergency Response, and Intelligence.
NICE Actimize announced the launch of its newest platform, NICE Actimize Xceed, which integrates best-in-class AI, data intelligence, behavioral analytics, and insights within a unified cloud platform designed to bring agility to financial institutions of all sizes, including community and regional banks, that are looking to modernize their financial crime risk management solutions. With "Always On" AI-based technology, NICE Actimize Xceed's self-learning capabilities immediately and autonomously adapt to new threats, helping financial institutions meet today's dynamic risk management needs with laser accuracy, speed and simplicity, and without the need for a team of data scientists.
BDO USA announced the launch of a new integrated solution that helps organizations develop and maintain a comprehensive data governance, risk management and compliance program. BDO's Compliance Center allows companies to maximize the utility of their Microsoft suite by providing complementary services through each step of the compliance and information risk management process, from data discovery and initial gap assessments, to controls implementation, ongoing monitoring and enforcement.
There's an acute need for IoT risk management improvement, as most organizations do not know what tracking and safeguards their third parties have in place, according to the Shared Assessments Program and the Ponemon Institute. "This is especially true when the use of IoT devices is extended to third parties, fourth parties, or even more concerning, when it's unknown where the use of IoT devices are being extended, or those extensions are unmanaged," observes Rocco Grillo, Managing Director, Global Cyber Risk Services, Alvarez & Marsal.