risk management

I am often asked, “Renee, what is integrated risk management (IRM), and how is it different from GRC?” You are neither misinformed nor are you horribly confused. We have been on a seven-year journey together maturing governance, risk management, and compliance (GRC) programs to eventually give you the process, program, and data to get to […]

Are you a tech optimist? I generally tend to be. Yet as I read about new technology, I sometimes find myself thinking, “This is amazing! And terrifying.” As we approach the end of cybersecurity Awareness Month, I’d like to draw attention to the issue of technology-facilitated abuse. Abusers Use Technology To Control And Hold Power […]

Last week, an Oklahoma court ordered Johnson & Johnson to pay $571 million for involvement in “false, misleading, and dangerous marketing campaigns” that contributed to the opioid addiction crisis in the state. This case is interesting for a couple of reasons: 1) It’s the first ruling in the US to hold a drug manufacturer accountable […]

Social media has created customer groups that coalesce around a brand — in effect, a union. They collectively can and will change your corporate policy. With collective bargaining, business as usual is no longer acceptable. Are you ready for the empowered, technically savvy, and motivated customer? It’s the age of the customer: What are you […]

Large corporates and startups seems like a match made in heaven. The former have the customer base, budget, and scale that the latter crave. And startups bring speed and agility and can help enterprises experiment with emerging technologies and business models. There’s even a whole industry of matchmakers — platforms and accelerators that aim to […]

Sixty-four percent of global security decision makers recognize that improving their threat intelligence capabilities is a high or critical priority. Nevertheless, companies across many industries fail to develop a strategy for achieving this. Among the many reasons why organizations struggle to develop a threat intelligence capability, two stand out: Developing a mature threat intelligence program […]

Motherboard and Kaspersky unveiled that hackers compromised a server of computer manufacturer ASUS’s live software update tool to install a malicious backdoor on thousands of computers. The malicious file was able to masquerade as an authentic software update as it was signed with legitimate ASUS digital certificates. The manufacturer unwittingly pushed out the backdoor to […]

Depending on who you listen to, the combination of GDPR and distributed ledger technology (DLT, AKA blockchain) is either a poisonous cocktail or a magic potion. As you’d expect, the reality is more nuanced: While GPDR poses a challenge to DLT-based architectures, it doesn’t make them obsolete or unviable. Furthermore, DLT can actually form an integral […]

The business risks associated with global climate change are enormously complex and nearly infinite in quantity. Your firm’s climate-related risks, however, are much more manageable (albeit complex and numerous, as well). No two organizations are exposed in exactly the same way. Rising temperatures, sea-level rise, and more frequent and severe extreme weather events have already […]

The Forrester New Wave™: Cybersecurity Risk Ratings, Q4 2018 Earlier today, we published “The Forrester New Wave™: Cybersecurity Risk Ratings, Q4 2018” evaluation. We take a close look at the nine most important vendors in this rising market, reviewing their current capabilities, customer references, and strategic road maps. This includes vendor profiles, with our analysis and buyer […]

It may not seem like it yet, but climate change is altering the world so drastically that all enterprises will need to undergo a transformation to avoid going extinct. Earlier this week, the UN’s Intergovernmental Panel on Climate Change (IPCC) reported (with high confidence) that at the rate we’re going, global warming of 1.5°C is likely […]

Over the past few years, companies in all markets have embraced digital transformation, whether it is financial services finding new mechanisms to engage with customers or manufacturers adding sensors and other data collection components into their operational processes. These digital transformation efforts are about leveraging digital insights to drive better outcomes. Digital transformation has value in the […]

Forrester’s 2018 Guide To Cyberinsurance Today, no one is 100% secure — believing otherwise is hubris of Icarian proportions. This reality is a core reason why more organizations are turning to cyberinsurance. Because without it in some form (whether it’s a purchased policy or their own allocated cash reserves), they have no safety net to stymie […]

The Forrester Tech Tide™: Risk And Compliance Management, Q2 2018 We recently published our Tech Tide™ report outlining 14 key risk and compliance technologies to track in 2018. One of the challenging parts of this research is setting the right scope. We found risk and compliance technology everywhere, covering every industry, region, and niche use case. […]

Mark Zuckerberg’s testimony before the U.S. Senate didn’t sway us from our previously posted perspective, at least in terms of what Facebook’s fiasco means for marketers.  If you are looking for more catastrophizing around the near-term death of social marketing, you’ve come to the wrong blog post. What did catch our attention: how poorly the […]

In their quest to become digital insurers, insurance carriers have a revolutionary opportunity to improve their businesses with new and emerging artificial intelligence (AI) technologies. It is certainly a balancing act to find that perfect peanut butter-and-jelly combination of operational efficiency and customer engagement, however I believe many insurance carriers to be up to the […]

Building the business case for your digital investment is hard, so you need to drill into the specifics of any given process you intend to digitize. Digital track-and-trace solutions contribute to ROI in many different ways. The main strategic reasons for using them are: More effective risk management. Many countries are putting in place regulations […]

GUEST BLOG POST, FROM DREW GREEN As a voracious media consumer, I’m exposed to a mind-numbing amount of advertising. Enough that trends start to emerge. One recent trend standing out more than others is an influx of “cause marketing” tactics, where brands incorporate their values into their messaging. Look no further than the composition of […]

  The third-party ecosystem continues to flummox risk managers. Regulators keep pushing for stronger oversight, but they fail to offer real standards or tools to make this possible. What’s worse, technology and service providers  have only helped large companies become more efficient at asking their third parties hundreds of questions; which means these third parties […]