GRC

GRC stands for governance, risk and compliance. Every organization has to manage a dynamic business environment coupled with evolving information technologies. This means meeting objectives, confronting uncertainty and conforming to both legal and internal regulations.

A GRC team establishes policies, provides security governance, evaluates risk, conduct audit and monitors compliance with the law. It offers a structured approach to aligning IT with business objectives. Through effective implementation of GRC, an organization can achieve ethical behavior while also achieving improved efficiency and cybersecurity.

GRC

Is the SHIELD Act on Your Compliance Radar?

With so much happening in the world of privacy and security, chief information security officers (CISOs) and chief …

GRC

Do You Know Where Your GDPR Gaps Are?

In January, Google was fined 50 million euros, or about $57 million, for violating Europe’s General Data Protection …

By Matthew Todd

Data Security Is Risky Business—Watch Out for Sharks

By Robert Boyce, Justin Harvey

Don’t Wait for a Breach to Build Your Communications Strategy

By Edward M. Stroz

How You Should Expand Your Cybersecurity Talent Pool: A Lesson o...

The Human Side of Cybersecurity

By Antanas Guoga

Harnessing the Power of Blockchain

Cybersecurity Policy: Another Supply-Chain Juggling Act

data breach plan

By Paul Calatayud

When a Breach Hits, the Best Defense Is a Good Offense

reporting structure cybersecurity

By Mercedes Cardona

Reporting Structure Is Not All Ego

By Paul Jackson

Want to Avoid Cybersecurity Problems? Pay Close Attention to Cor...

It’s Time to Get Real: Exposing the Top 10 Cloud Security Myths

scroll to load