Articles

Tag: risk it (page 2)

The Risk of Excessive Red Tape

Norman Marks | Sep 16, 2021

Practitioners need to have the courage to stimulate management to remove controls and other procedures that cost more than they are worth.

Continue reading...
Risk Management and Cloud Computing: Two Approaches

Norman Marks | Aug 31, 2021

Any discussions of IT-related risk should start with an understanding of the organization's business objectives and go from there.

Continue reading...
Why US Businesses Are Adopting a Zero Trust Model With Technology

David Roe | Aug 31, 2021

In response to the growing number of cyberattacks, the U.S. is developing a zero trust technology strategy in conjunction with the private sector. Here's why.

Continue reading...
Exploring the Positive Side of Risk

Norman Marks | Aug 20, 2021

Pretty much every situation has several potential outcomes — some positive, some negative. Focusing only on the latter doesn't make business sense.

Continue reading...
How Risk Management Can Build Credibility With Management

Norman Marks | Aug 3, 2021

ERM wants a seat at the management table. What do risk practitioners need to do to make this happen? And should that really be their goal?

Continue reading...
Revitalizing Risk Management Through a Changed Reporting Structure

Norman Marks | Jul 21, 2021

Would a change in reporting structure revitalize and give new energy to a risk management function and practice?

Continue reading...
Assessing and Addressing Technology Risk

Norman Marks | Jul 20, 2021

Any technology risk assessment should be made in terms of the potential effect on the business, not any effect on IT assets or goals.

Continue reading...
Protecting Data Against the Rising Tide of Ransomware

David Roe | Jun 23, 2021

The number of ransomware attacks is on the rise. Here's what enterprises can do to minimize their exposure.

Continue reading...
Is Risk-Based Audit the Best Approach?

Norman Marks | Jun 16, 2021

Risk-based audit needs a reset to enterprise risk and value auditing.

Continue reading...
Mancini's Law Says: Information Chaos Has Consequences

John Mancini | Jun 9, 2021

Without intervention, information chaos will threaten the viability of our systems. The ransomware attacks are one of the visible consequences.

Continue reading...
Is It Time We Retire the GRC Acronym?

Norman Marks | Jun 7, 2021

Instead of using GRC, should we instead focus on what people are responsible for rather than tagging them with an expression that signifies nothing?

Continue reading...
Is a Single Source of Data the Way Forward for Data Governance

David Roe | Jun 7, 2021

With more data entering the enterprise, business leaders are looking at new ways to keep it under control. One way is through creating a single source of data.

Continue reading...
So, You Think Your AI Deployment Is Secure?

David Roe | May 13, 2021

With an increase in the number of organizations using AI, many organizations are opening up a new attack vector for cybercriminals. Here's why.

Continue reading...
Should We Abandon Risk Assessment, Risk Management and Risk Appetite?

Norman Marks | May 7, 2021

More people are recognizing that managing or mitigating a list of risks is not effective, nor of much value beyond compliance.

Continue reading...

Displaying 15-28 of 563