Vacation Without A Business Continuity Plan?

How solid is your Business Continuity Plan? Do you even have one? Various threats such as hardware and software failures, cyberattacks, human error, and yes, natural disasters can take down your business. According to FEMA, 40% of businesses do not reopen after a natural disaster, another 25% fail within one year. Are you prepared? We’ve identified 5 basic steps to building a Business Continuity Plan to ensure you are..


Your Third Party Data Classification is Outdated (and You Don’t Know It)

Third Party Data Classification is essential to managing a sustainable and efficient business. For most organizations, vendor classification is typically established during initial onboarding based on what information vendors need to have access to at that point in time. Unfortunately, once set up, rarely do organizations reclassify their vendors, potentially exposing their vendor risk management strategy to unnecessary risk..


Your Third-Party Vendor Inventory is Incomplete (And You Don't Know It)

Third-party vendor assessments are often considered the cornerstone of any organization’s third-party risk management program. However, as a recent Rsam survey showed, less than 15% of vendors are being assessed. But the real issue is there is a whole ecosystem of third-party vendors not even being considered for assessment..



If Equifax Had Wings…GDPR Fines 2018

British Airways had a major cyberattack in 2018. Will they face GDPR fines in 2018? The investigation into British Airways’ data breach is still ongoing, so it’s too early to say what GDPR fines they may be hit with. However, they could face up to £488 million in penalties under GDPR. How would the Equifax breach in 2017 have fared?.

Integrated Risk Management| Compliance| Read more




Strategic Supplier Risk Management: Value Beyond the Assessment

Supplier risk management is an important consideration across the organization, not only for the technology team. There are times throughout every organization’s supplier risk management lifecycle when it makes sense to reassess who you’re working with and evaluate their value to the business based on vendor risk management best practices..