If Equifax Had Wings…GDPR Fines 2018

British Airways had a major cyberattack in 2018. Will they face GDPR fines in 2018? The investigation into British Airways’ data breach is still ongoing, so it’s too early to say what GDPR fines they may be hit with. However, they could face up to £488 million in penalties under GDPR. How would the Equifax breach in 2017 have fared?.

Integrated Risk Management| Compliance| Read more

Strategic Supplier Risk Management: Value Beyond the Assessment

Supplier risk management is an important consideration across the organization, not only for the technology team. There are times throughout every organization’s supplier risk management lifecycle when it makes sense to reassess who you’re working with and evaluate their value to the business based on vendor risk management best practices..

GRC Case Study: Defense Contractor meets DFARS Compliance NIST 800-171

The DFARS compliance deadline went into effect at the end of 2017. Read this GRC case study to see how one defense contractor moved from manual spreadsheets to a centralized framework that fulfills regulatory initiatives beyond DFARS compliance NIST 800-171 without re-engineering.

Rsam & BitSight Technologies: Vendor Risk Management with a 360° View

If you’re managing vendor risk management for a large organization, you may have up to a thousand or more vendors to assess on a regular basis. Knowing where to start can be daunting, but there is a solution. This is why Rsam has integrated BitSight Technologies Security Ratings into our Vendor Risk Management module..

Is Your Vendor Risk Management Program Negatively Impacting Compliance?

Vendor Risk Management program journeys often start with a breach traced to a vendor. It becomes a priority and your team receives the funding it needs to implement a vendor risk management program. If you’re in this situation now, the first thing to keep in mind is you shouldn’t try to create your program in a vacuum..