Top Five Vendor Risks

A vendor can be defined as a person or a company that offers some service or product for a fee. Many companies hire third-party vendors to help get jobs done in certain areas. Outsourcing comes with some benefits, such as expertise knowledge, without the hassle of hiring and training [...]

Information Risk: ISO 27001

What is it? ISO 27001 is an international standard that provides a process for an Information Security Management System (ISMS). An ISMS is a framework containing policies and procedures for an organization to follow throughout its information risk management process. Following the process will ensure that any company’s stored [...]

How Consulting Firms Can Provide Better Service at a Lower Cost

Risk consultants are so busy managing risk for other companies that they often don’t realize that they themselves also have risks to face, such as: missing deadlines, misplacing client documents, difficulty scheduling client interviews and more. But overall, the biggest risk here is performance. How can a consulting firm [...]

Top Three Industries that Need an Effective Risk Management Solution

We live in a society where risk is ever present and impossible to avoid, no matter what industry you are in. It is no secret that some industries tend to face higher risk than others, therefor they must take additional precautions. PCI-DSS, HIPAA, and NERC-CIP-01 all require risk assessments. [...]

Five Must Knows About GDPR

What is GDPR? A trending topic these days is the latest data regulation that businesses all around the world will soon follow—GDPR. For those of you who don’t already know what GDPR is, let’s start with the basics. GDPR stands for General Data Protection Regulation and was validated by [...]

What RiskWatch Accomplished in 2017

What’s changed at RiskWatch this year? We’ve overhauled the entire application with a new, easy-to-use interface while simplifying and improving the process for performing assessments. Our new dashboard showcases and empowers you to perform comparative analytics using detailed graphics and reports. What are the results of these changes? SecureWatch [...]

August 2015 Webinar: Risk and CIP-014’s R4

“Why You Should Stop Thinking about Risk When You Think about CIP-014’s R4” Often physical security professionals associate CIP-014's R4 with the word risk. However, this interesting and informative webinar for physical security executives will include three surprising points: Why risk is inconsequential to CIP-014’s R4 Why you should [...]

NERC Files for Approval of Physical Security Standard

In wake of the April 2013 attack on PG&E’s Metcalf substation in San Jose, California, the Federal Energy Regulatory Commission (FERC) issued an order directing the North American Electric Reliability Corporation (NERC) to develop a physical security standard requiring transmission owners to identify risks posed by physical security threats [...]

Big Banks, Credit Unions Approve More Small Business Loans

Nearly five years after the financial crisis made it more difficult for banks to approve small business loans, large lenders are loosening credit standards and allocating more capital to small business lending, according to research published today by Biz2Credit, which matches borrowers with lenders. The company compiles a monthly index [...]

Violation Fines Aggressively Being Enforced – Are you HIPAA Compliant?

Are you HIPAA compliant? Late last year, members of the U.S. Congress challenged The Director of Office of Civil Rights (OCR), Leon Rodriguez, to step up the enforcement of the Health Insurance Portability and Accountability Act (HIPAA). He intends to put its Fining Authority to good use, by stating: [...]