Risk Management News & Articles

It’s no secret that the relationship between corporate IT and legal departments isn’t as cohesive as it should be. A recent survey released by Recommind, a leader in search-powered information risk management (IRM) software, revealed that a lack of collaboration between both teams was greatly hindering e-Discovery efforts.

While advances in cloud computing, mobile workforce management and document collaboration have made working virtually, virtually easier, issues of document security still exist. Today, Confidela released Watchdox 2.2, a document control and tracking service, aiming to simplify what can be a complicated process. 
 

 Although risk is the often the most discussed element of GRC (Governance, Risk, Compliance), it is important to understand all aspects. Let's start with Governance.

Recent events -- particularly in the financial services sector -- have increased the pressure on enterprise records management practitioners, as more and more companies face regulatory audits or litigation-related discovery requests. The idea of document management is easy for most people to understand. Records management, on the other hand, presents some conceptual challenges. Here's a primer.

There is a new buzzword in the business world, or rather buzz abbreviation. GRC -- or governance, risk management and compliance -- has invaded the language of consultants (including the major accounting firms), analysts such as Gartner and Forrester Research, and software vendors. Increasingly, it is an abbreviation used in the executive suite and boardroom. Unfortunately, there is no single, commonly accepted definition of GRC.

PCI (Payment Card Industry) compliance standards protect personal information and ensure security when transactions are processed using a payment card. Thanks to ClearPoint Metrics new PCI compliance management solution, organizations can manage PCI compliance risk more effectively, and reduce the cost of auditing and reporting.

The new metrics-based PCI assessment application will be delivered as Software-as-a-Service (Saas) on the Amazon cloud.

Companies have been contemplating compliance and governance issues for decades. But it’s only recently that they’ve been tackling the challenge that social media brings to corporate governance, risk and compliance. This week we examine a few of the elements impacting the industry.

Last week we talked about 5 of 10 important issues facing risk and compliance managers in 2010. You can read part one here. This week we continue that discussion with the final 5 issues focusing on risk management investment, integration, reporting and more.

As risk and compliance managers look toward the new decade, they are hoping for several changes in the GRC landscape. Based on conversations with industry experts and customers, we've compiled 10 of the most important issues for compliance professionals. Here we give you a look at the first 5, with the second five in part two.

Last week, we pondered the fate of acronyms -- namely GRC. Continuing the conversation, we sat down with CA’s (news, site) Marc Camm, senior vice president and general manager of GRC Products, and Peter Stapleton, senior principal product manager for CA GRC Manager, to discuss their thoughts about what Governance, Risk and Compliance will look like in 2010 and beyond.

A new year for governance, risk management and compliance brings a little something for everyone. Healthcare industries get a new tool, acquisitions and collaboration bring continued success, and cloud computing impacts data storage in the UK.

This week in GRC: a new privacy manager to map your enterprise's risks, a conference for pique your interest in identity management and a survey that shows you're getting better at managing GRC. 

We all know that all companies risk losing or leaking information. But do we really know what to do about enterprise risk management? Best practices aren't always relevant to enterprise environments, nor do companies always have the proper benchmarks in place to implement them.

Taken together, GRC is an oft-used acronym that refers to the way in which organizations manage, store and share information. Taken individually, there are integral pieces of the process.

Since the release of the fourth version of their first multi-case, multi-party eDiscovery review platform with process analytics, CaseCentral (news, site) has been hard at work simplifying the way early case assessments are managed.

Today, they offer an Early Case Assessment (ECA) offering that is seamlessly integrated with the eDiscovery review platform, eliminating the need to export data to another tool for ECA analysis.

Think the government is watching you? You're probably right.

But for the rest of us, we can turn to Surveillance Self-Defense to educate us about the law and technology of communications surveillance, computer searches and seizures -- and more importantly, how to keep your private data out of other peoples' grimy little hands.