Audit, Continual Improvement and Risk Management - Continuity Professionals Pulse

A Guide to RCSA

LogisManager

JANUARY 16, 2024

Inspire continuous improvement: The ultimate goal of RCSA is to help businesses continuously refine and enhance their processes to mitigate risks and support growth. Regularly addressing risks is an effective way to ensure your controls benefit your operation.

Risk Management

Risk Management Mitigation Continual Improvement Audit

ISO 27001 Certification Requirements & Standards

Reciprocity

DECEMBER 21, 2022

ISO 27001 compliance can be confusing because the sheer volume of standards is overwhelming, but the right program can ensure business continuity. If using an ISO audit software tool to achieve ISO certification is on your compliance roadmap, here’s a quick primer to get you up to speed and jumpstart your ISO compliance efforts.

Audit

Audit Accreditation Gap Analysis All-Hazards

A Guide to Completing an Internal Audit for Compliance Management

Reciprocity

DECEMBER 20, 2022

Learn the best way to complete an internal audit for your compliance management program. The Basics of Internal Audits. Internal audits assess a company’s internal controls, including its governance, compliance, security, and accounting processes. What Is the Purpose of an Internal Audit?

Audit

Audit Management Evaluation Activation

Important KPIs for Successful Vendor Management

Reciprocity

AUGUST 24, 2022

Every risk management program should include risks posed by your vendors. Beware, however: vendor risk management is a complex process unto itself, requiring ongoing monitoring and measurement. What Are Vendor Risk Management Metrics? What Are the Most Common Vendor Risks? Staff training.

Management

Management Risk Management Cybersecurity Strategic

Data Privacy Officer Responsibilities

Solutions Review

JUNE 9, 2023

The DPO conducts regular privacy audits, reviews data protection practices, and provides guidance to ensure adherence to regulatory requirements. They collaborate with legal teams to navigate complex legal frameworks and mitigate potential risks.

Impact Analysis

Impact Analysis Authorization Mitigation Education

How to Report On ESG

LogisManager

JANUARY 3, 2022

Investors look at companies’ ESG reporting to determine if they are an organization that upholds strong values, is prepared for future challenges like climate change, and is dedicated to continually improving. These standards also help stakeholders aggregate and audit ESG reports. UN Principles for Responsible Investment (PRI).

Corporate Governance

Corporate Governance Government Audit Activation

What Is ESG? [Complete Guide]

LogisManager

JUNE 10, 2021

Social criteria examine diversity, equity and inclusion, labor management, data privacy and security and community relations. Governance criteria deals with a company’s leadership, executive pay, audits, internal controls, board governance, financial performance, business ethics, intellectual property protection and shareholder rights.

Corporate Governance

Corporate Governance Government Risk Management Activation

6 Steps for Financial Firms to Turn AI into ROI

Pure Storage

OCTOBER 4, 2022

Improve efficiency by automating workflows. Enhance risk management and improve accuracy. If you cannot measure it, you cannot improve it. This one may often be overlooked, but AI works best when it learns from itself, so measuring and reporting is crucial to continuous improvement. Lord Kelvin.

Banking

Banking Financial Services Strategic Application

ISO 27001 Requirements Checklist: Steps and Tips for Implementation

Reciprocity

OCTOBER 1, 2022

The core of an ISMS is rooted in the people, processes, and technology through a governed risk management program. Be aware, however, that certification is evaluated and granted by an independent third party that conducts the certification audit. Technical vulnerability management is covered in Annex A.12.6,

Gap Analysis

Gap Analysis Audit Security Asset Management

Leveraging Technology to Foster Effective Compliance Programs

Fusion Risk Management

NOVEMBER 17, 2021

If you are drafting a playbook for a narrow risk area, you should identify exactly who is being trained, on what cadence, and how you will measure effectiveness of the training. Auditing and Monitoring – Build robust functions that differentiate between auditing and monitoring.

Technology

Technology Audit Government Communications

Unlocking Climate Change Resilience Through Critical Event Management and Public Warning

everbridge

NOVEMBER 2, 2021

ANALYZE – Evaluate actions taken and understand patterns to improve disaster risk reduction. Every severe weather emergency response generates valuable data that is used in the continuous improvement process for risk management. Planning for the Future, Together.

Resilience

Resilience Risk Reduction Management Command Center

Data Privacy Awareness Month 2024: Roundup of Expert Quotes

Solutions Review

FEBRUARY 1, 2024

We’ve seen US states such as California passing their own privacy laws and drafting detailed regulations on cybersecurity audits, risk assessments, and automated decision making privacy by design in practice a must-do to be able to effectively respond to the demands of augmented privacy regulatory frameworks.

Healthcare

Healthcare Security Cybersecurity Government

Data Privacy Week 2024: The Definitive Roundup of Expert Quotes

Solutions Review

JANUARY 25, 2024

We’ve seen US states such as California passing their own privacy laws and drafting detailed regulations on cybersecurity audits, risk assessments, and automated decision making privacy by design in practice a must-do to be able to effectively respond to the demands of augmented privacy regulatory frameworks.

Authentication

Authentication Security Cybersecurity Government

Data Privacy Day 2024: The Definitive Roundup of Expert Quotes

Solutions Review

JANUARY 28, 2024

We’ve seen US states such as California passing their own privacy laws and drafting detailed regulations on cybersecurity audits, risk assessments, and automated decision making privacy by design in practice a must-do to be able to effectively respond to the demands of augmented privacy regulatory frameworks.

Healthcare

Healthcare Security Cybersecurity Government

Business Continuity Guide for Smaller Organizations

Stratogrid Advisory

JUNE 3, 2020

Additionally, the Business Impact Analysis (BIA) process outlined in Chapter 4 will leverage findings of the organizational Risk Assessment activity, which could be executed as a part of the BIA engagement. Vendor Risk Management When developing organizational continuity plans, third-party providers (e.g.

Business Continuity

Business Continuity BCM Impact Analysis BCP

Business Continuity Guide for Smaller Organizations

Stratogrid Advisory

JUNE 3, 2020

Additionally, the Business Impact Analysis (BIA) process outlined in Chapter 4 will leverage findings of the organizational Risk Assessment activity, which could be executed as a part of the BIA engagement. Risk Methodology. Vendor Risk Management. Test, Exercise and Continuously Improve.

Business Continuity

Business Continuity BCM Impact Analysis BCP

Continuity Professionals Pulse

A Guide to RCSA

ISO 27001 Certification Requirements & Standards

Trending Sources

A Guide to Completing an Internal Audit for Compliance Management

Important KPIs for Successful Vendor Management

Data Privacy Officer Responsibilities

How to Report On ESG

What Is ESG? [Complete Guide]

6 Steps for Financial Firms to Turn AI into ROI

ISO 27001 Requirements Checklist: Steps and Tips for Implementation

Leveraging Technology to Foster Effective Compliance Programs

Unlocking Climate Change Resilience Through Critical Event Management and Public Warning

Data Privacy Awareness Month 2024: Roundup of Expert Quotes

Data Privacy Week 2024: The Definitive Roundup of Expert Quotes

Data Privacy Day 2024: The Definitive Roundup of Expert Quotes

Business Continuity Guide for Smaller Organizations

Business Continuity Guide for Smaller Organizations

Stay Connected