Articles
The Institute of Internal Auditors' new practice guide for internal auditing shares some good insights, but falls short in a few areas.
Continue reading...
While it's impossible to completely eliminate risk, here are four actionable solutions for mitigating your organizational risk in the cloud.
Continue reading...
Data is only becoming more valuable - and more difficult to protect - with every passing day.
Continue reading...
For leaders to balance risk management with company performance, they must keep open lines of communication with risk managers.
Continue reading...
Few organizations are seen as having effective risk management, so there is no exemplar against which to measure success.
Continue reading...
Management needs to take risks to survive and thrive, and that means balancing the potential harms that may occur against the potential rewards.
Continue reading...
Shouldn't the defensibility of a process for managing information require designing the process with info mgmt best practices in mind? Short answer: nope.
Continue reading...
IIA standards need to be updated so audit providing assurance on enterprise-level risks, not what matters to middle management alone.
Continue reading...
Deciding how much to invest in cybersecurity requires considering the likelihood of achieving objectives given all sources of risk, not just cyber.
Continue reading...
There's a way to put an end to shadow IT that respects people's needs for functionality and access to information.
Continue reading...
While most leaders understand the benefits of fully leveraging data, many struggle with how to turn it into usable insights.
Continue reading...
Ten principles for what constitutes effective oversight of risk management by a board.
Continue reading...
If we can’t agree on what the terms risk and opportunity mean, how can we have a constructive conversation?
Continue reading...
Even if it were possible to have one piece of software that included everything in GRC, very few companies claim to have integrated their related technologies.
Continue reading...