Risk

Compliance professionals still “own” too many risks that business units could manage more effectively. Gartner’s Brian Lee discusses one solution: moving ownership of compliance risks closer to their sources. It’s a time of enormous change for organizations of every type. Gartner’s 2018 survey of CEOs shows that CEOs, who have been focused on growth for years, are now prioritizing firm...

The digital revolution is transforming our world. Protiviti’s Jim DeLoach shares how, over the next few years, many organizations will need to undertake radical change programs and – in some cases – completely reinvent themselves to remain relevant and competitive. Is disruptive innovation sufficiently emphasized on the board agenda and in the C-suite? Ask executives and directors what their company’s...

Risk management pioneer and corporate governance expert Anette Mikes shares her thoughts on the U.K.’s separation from the European Union. Whatever scenario comes to pass, the risks are great. Anette outlines five lessons to be learned from the ongoing Brexit predicament. In their 2018 polemic, “Saving Britain,” senior Labour politician Andrew Adonis and the political scientist Will Hutton pondered Britain’s...

Riskonnect’s Dawn Ward compares the traditional GRC view versus the integrated risk management (IRM) view of risks as they relate to internal audit and information systems teams. As Gartner continues to shift its focus from governance, risk and compliance (GRC) toward a focus on integrated risk management (IRM), many corporate functions are recognizing the operational significance. The shift doesn’t negate...

The stakes are getting higher for CROs and compliance officers. Brenda Boultwood of MetricStream details why it’s increasingly imperative that risk and compliance professionals work hand in hand to address ongoing risks and strengthen organizational GRC efforts. While risk and compliance functions have run on parallel tracks for years, 2019 is likely to witness a new level of synergy between...

Evan Francen, CEO of FRSecure and Security Studio, makes the case for adopting a third-party information security risk management (TPISRM) program. He outlines how to get started and explains why the common excuses for ignoring the risks don’t hold water. Third-party information security risk management (TPISRM*) is more critical today than it’s ever been. There is little doubt amongst information...

ERP Maestro's CEO Jody Paterson discusses cybersecurity risk disclosure and compliance and how executives are being held more personally accountable for nondisclosure as outlined by the SEC. Companies face a multitude of risks and threats. Reporting them to stakeholders and investors is a requirement, and serious consequences may ensue for a failure to do so – for the company and,...

The latest global survey of C-level executives and directors of the macroeconomic, strategic and operational risks that organizations face indicates an increasingly risky year ahead. Protiviti’s Jim DeLoach discusses the risks keeping executives up at night. Overall, 825 C-level executives and directors participated in this year’s global study, with 45 percent representing companies based in North America. As with our...

In this day and age, compliance risks can come from anywhere. Sean Freidlin of Hanzo discusses some of the chief ways innovative marketing campaigns can expose the organization to risk, provides three examples of current risky strategies and offers lessons for the compliance practitioner. Every department in an organization is a potential source of risk that compliance professionals need to...

From Google's GDPR violation to data breaches happening just hours after the new year, 2019 is off to a crazy start, especially for risk managers. In anticipation of the months ahead, LogicGate CEO Matt Kunkel predicts what GRC professionals should be prepared for in 2019.  There’s no doubt risk managers stayed busy in 2018. From the GDPR rollout in May...

Lockpath’s Colby Smith discusses the reasons an integrated approach to risk management is an imperative – chief among them digital processes, global business and a reliance on third parties. Digital transformation, globalization and outsourcing have given rise to unprecedented productivity, innovation, efficiency, collaboration and knowledge. However, with these business improvements come new risks. Modern business risks are multifaceted: they impact...

Actionable advice and a reader-friendly format make this an essential handbook for today’s operational risk manager. Want a refresher on current best practices for operational risk management in the financial services industry – but also need a crash course on today’s cutting-edge developments and advanced tools? A recent addition to the risk management bookshelf offers both. Operational Risk Management: Best...