Security News

Enterprise third-party risk management programs have been around for a half-decade or longer, and at this point most large organizations run one. Many of these TPRM programs only provide a thin veneer of cybersecurity assurance.

Fusion Risk Management announced it has recorded several significant client wins among multinational and global investment banks to start the calendar year as the company continues to expand its footprint in the financial services sector. More than 20 top financial services providers have selected the Fusion Framework System to drive their operational resilience efforts in the past year.

Despite all of this, less than 20% of 2020 security budgets were spent on Insider Risk - and more than half of organizations don't have a formal Insider Risk response plan in place. Forrester predicts that 1 in 3 data breaches in 2021 will stem from insiders, and the Code42 2021 DER found that 6 out of 10 IT security leaders believe insider threats will increase, or increase significantly, over the next two years.

Survey respondents were asked to rate 36 macroeconomic, strategic and operational risks, including new risks that emerged this year related to the pandemic and social justice. "More than ever, 2020 demonstrated that organizations can no longer afford a reactive approach to risk management. Pandemic risk loomed on the horizon for a long time - it was a matter of 'when,' not 'if,'" said Jim DeLoach, a Protiviti managing director.

Find out what your company could risk by not getting cybersecurity audits. Steven Wertheim, president of SonMax Consultants, in his CPA Journal article Auditing for Cybersecurity Risk makes a strong case that auditing should be a part of every cybersecurity defense program.

Risk management is more than recovery from a cyberattack. Another equally important function of risk management is that it can be considered a proactive methodology used to identify risks in an organization's cybersecurity framework.

Third-party risk management professionals increasingly do not trust that security questionnaires provide sufficient information to properly understand and act on their third-party risk, according to RiskRecon and Cyentia Institute. As a result, the study found more enterprises are moving towards data-driven third-party risk management programs.

Throughout her career, Fernandez has prioritized customer-centricity and built an impressive record of producing compelling contemporary digital initiatives, thought-leadership campaigns and global marketing activities. Fernandez joins Fusion from Regulatory DataCorp, Inc., a global leader in compliance screening, where she served as Global Head of Marketing and led the company's go-to-market activities.

Reciprocity announced new capabilities within ZenGRC Risk Management. ZenGRC combines risk and compliance management to allow customers to identify, monitor, and mitigate risks.

Paragon is investing in the creation of a new Sector offering risk management solutions for its clients. Paragon Risk Management will offer a wide range of solutions including: Risk Advisory, Security Management, Industrial Security, Protection, Emergency Response, and Intelligence.