Privacy, security & risk

Forrester’s Security & Risk Research Spotlight – Governance, Risk And Compliance

Stephanie Balaouras
Vice President, Research Director
May 23, 2016

Crises don’t discriminate. Whether they are economic, geopolitical, technological or environmental, you can expect to have to deal with a major one soon. And how well you minimize the impact of that crisis is the difference between achieving your business objectives, and completely missing them, disappointing your customers, employees, partners, and shareholders in the process. Lucky for you (if you believe in luck and not the probability of chance events), Forrester’s risk experts have updated The Governance, Risk, And Compliance Playbook For 2016. I also recently finished a series of reports on the state of business continuity (which I have creatively named part 1, part 2, and part 3) to give you a jump start on your GRC efforts. Below, I’ve highlighted some of our most recent and exciting GRC research:

  • Your company’s reputation is one of its most valuable and continually misunderstood assets. In order to achieve true brand resilience during times of inevitable crisis, your enterprise must qualify, quantify, and plan for reputational risk impacts. To learn more, check out Renee Murphy and Nick Hayes’ Brand Resilience: Addressing The Critical Risks report.
  • Global conflict is not just an intriguing headline, these events affect your business and will drag your company’s success through the international dirt if left untamed or poorly managed. To learn how and get the full scoop, be sure to study Martin Whitworth’s latest report, Ignore Geopolitical Risk At Your Peril.
  • What do global cyber criminals love more than the inability of law enforcement officials to collaborate across jurisdictions? They love using social media to plot against you. But you can fight back after you’ve read Nick's Four Ways Cybercriminals Exploit Social Media.
  • Nick isn’t just staying up at night worrying about social media risk. He’s worried about digital risk across your entire business ecosystem. In his recent report, Build Digital Risk Insight, Nick explains the strategies that risk professionals must develop in order to collect, measure, and analyze vast amounts of available data to identify and mitigate risks taking place within and outside of their organizations.
  • Because governance, risk, and compliance touch all aspects of your organization, building your GRC strategy will be understandably complicated. To learn how to develop a clearly defined, all-encompassing GRC strategy that your key stakeholders will understand and support, check out Renee’s Build A Governance, Risk, And Compliance Strategy Worthy Of Business Consideration report.
  • How does one actually identify, analyze, evaluate and treat risk? In Define And Articulate The Role Of Risk Management, the first in a series of reports, Chris McClean explains how to establish, define, and execute on the parameters of your risk management program using current industry standards and best practices.
  • Wondering which GRC platform is best for your company? Renee evaluated the top 14 players in The Forrester Wave™: Governance, Risk, And Compliance Platforms, Q1 2016. Check out the full report to see the complete rankings.
  • How does your GRC program compare to the rest? Inquiring minds want to know. In his recent Benchmark The Performance Of Your GRC Program report, Nick analyzes data from multiple risk management surveys fielded by Forrester in 2015. Don’t miss Nick’s full analysis if you want to understand the current state and what’s to come for risk management in 2016.
  • The state of your organization’s culture will make or break your GRC success. In his updated report Cultivate Culture For Sustained GRC Performance, Nick highlights five ways to drive cultural change that will improve workforce behavior and positively augment your company’s GRC performance.

As always, I hope this information is valuable, and I welcome your feedback.

Thanks,
Stephanie

Categories

Related Posts in Privacy, security & risk See All