New & Notable
Risk management frameworks, metrics and strategy News
September 17, 2010
The CISO of financial giant Credit Suisse says the key to successful global security and risk management is a uniform governance system supported by a common policy framework.
May 21, 2009
Gartner says continuous controls monitoring for transactions is a GRC technology that promises to reduce compliance costs and improve financial governance.
April 23, 2009
A formal agreement with two Indian technology organizations expands the reach of the BITS program, with the goal of fostering trust in the security controls of international service providers.
September 16, 2008
Mike Rothman explains his point of view on why metrics programs need to evolve from trying to truly quantify information risk to something that actually works.
Risk management frameworks, metrics and strategy Get Started
Bring yourself up to speed with our introductory content
Generally Accepted Recordkeeping Principles is a framework for managing records in a way that supports an organization's immediate and future regulatory, legal, risk mitigation, environmental and operational requirements. Continue Reading
The Red Flags Rule (RFR) is a set of United States federal regulations that require certain businesses and organizations to develop and implement documented plans to protect consumers from identity theft. Continue Reading
Financial institutions face numerous regulatory requirements for managing vendor risk. Learn what financial firms need to include in their vendor contracts in order to conform with regulatory guidance and industry best practices for vendor risk ... Continue Reading
Manage Risk management frameworks, metrics and strategy
Learn to apply best practices and optimize your operations.
In this video get tips from expert Eric Holmquist on how to handle vendors to optimize security and minimize risk. Topics include risk assessment, due diligence best practices, common mistakes financial firms make in their vendor management programs... Continue Reading
As part of the vendor risk management process, regulators expect information security officers will document vendor relationships and have proper vendor documentation. Continue Reading
Societe Generale, Black Monday and bank failures are just a few of the reasons that the financial industry is in turmoil. Editor Sarah Hurley recently spoke with Chris McClean, an analyst at Forrester Research, to discuss the state of risk ... Continue Reading
Problem Solve Risk management frameworks, metrics and strategy Issues
Getting cross-discipline cooperation for company-wide, security related policies is a challenge many financial firms face. Expert Eric Holmquist suggests creating an information security council to overcome this problem. In this tip, learn what ... Continue Reading
In this presentation from Financial Information Security Decisions, Eric Holmquist explores the key elements of sound information security governance and how to successfully manage and coordinate all of the complex and important elements Continue Reading
Risk and information security can be tough to measure, however information security metrics can help. Expert Pete Lindstrom shares his picks for the top 10 strategic information security metrics. Continue Reading