Risk management and governance
With today's exponential advances in technology, CIOs, CTOs, CDOs and other IT leaders need critical advice on risk management and governance. Get news, guides and tips about technology-related compliance and data privacy issues, regulatory frameworks, limits on enterprise software development, cyber risk issues, metaverse dangers, cryptocurrency regulation and more.
Top Stories
-
News
06 Aug 2024
Judge will face remedy challenge in Google antitrust case
Remedies in the Google online search antitrust case could include eliminating the company's use of distribution contracts that cemented Google as a default setting. Continue Reading
-
Podcast
05 Aug 2024
Examining the tech stances of Kamala Harris and Donald Trump
Harris has been close to the tech and AI community in her home state of California but is markedly more pro-regulation than Trump. The candidates are vying for tech and AI support. Continue Reading
-
Tip
31 Jan 2024
4 tips to find cyber insurance coverage in 2024
The cyber insurance industry is settling down but isn't without challenges. Read up on cyber insurance in 2024 and how to get the most from your organization's coverage this year. Continue Reading
-
Definition
29 Jan 2024
conduct risk
Conduct risk refers to the potential for a company's actions or behavior to harm its customers, stakeholders or broader market integrity. Continue Reading
-
Tip
29 Jan 2024
Metaverse privacy concerns and how to address them
Data privacy in the metaverse is a moving target. Learn about the main privacy issues and risk for businesses and users -- and how best to address them. Continue Reading
-
Definition
23 Jan 2024
BYOD (bring your own device)
BYOD (bring your own device) is a policy that enables employees in an organization to use their personally owned devices for work-related activities. Continue Reading
-
Tip
23 Jan 2024
7 records management systems to consider
Top records management systems like Box, DocuPhase, Laserfiche and SharePoint can help organizations store important documents and automate retention schedules. Continue Reading
-
Tip
23 Jan 2024
How will the metaverse affect the future of work?
Virtual field trips to the Louvre for inspiration, accelerated learning, onboarding reimagined -- how will the metaverse change our working environments and when? It depends. Continue Reading
-
News
19 Jan 2024
Competition, cooperation will define U.S.-China relations
Business leaders will need to take steps over the next decade to prepare for U.S., China relations largely defined by competition and how policymakers approach cooperation. Continue Reading
-
News
19 Jan 2024
Democratizing machine learning hits cultural, tech snags
Forrester Consulting-Capital One study points to organizational silos, disconnect between line-of-business and data managers, and hard-to-use machine learning tools as challenges. Continue Reading
-
Feature
18 Jan 2024
Top 5 digital transformation trends of 2024
This year, look for digital transformation trends to revolve around AI, cost containment, revamped delivery methods and a bigger commitment to change management. Continue Reading
-
Feature
18 Jan 2024
12 top enterprise risk management trends in 2024
Trends reshaping risk management include use of GRC platforms, risk maturity models, risk appetite statements and AI tools, plus the need to manage AI risks. Continue Reading
-
Feature
17 Jan 2024
Challenges the fintech industry faces with generative AI
As the new technology has exploded in other industries, financial organizations are also exploring how they can apply it. However, regulatory requirements hinder fast adoption. Continue Reading
-
Tip
17 Jan 2024
Top 7 CIO challenges in 2024 and how to handle them
CIOs face multiple tests this year as they scrutinize innovation investment amid budget tightening, chart a course for AI and grapple with perennial issues such as staffing. Continue Reading
-
Feature
17 Jan 2024
16 top ERM software vendors to consider in 2024
Various software tools can help automate risk management and GRC processes. Here's a look at 16 enterprise risk management vendors and their products. Continue Reading
-
Definition
17 Jan 2024
OODA loop
The OODA loop -- Observe, Orient, Decide, Act -- is a four-step approach to decision-making that focuses on filtering available information, putting it in context and quickly making the most appropriate decision, while also understanding that changes can be made as more data becomes available. Continue Reading
-
News
16 Jan 2024
Former GOP candidate's AI chatbot fielded policy questions
Former presidential candidate Asa Hutchinson used an AI chatbot to provide insight on his policy stances, a development that both impresses and worries tech and media experts. Continue Reading
-
Definition
16 Jan 2024
artificial intelligence (AI) governance
Artificial intelligence governance is the legal framework for ensuring AI and machine learning technologies are researched and developed with the goal of helping humanity adopt and use these systems in ethical and responsible ways. Continue Reading
-
News
16 Jan 2024
FCC adopts lead generation rules to protect consumer privacy
The new rules aim to protect consumers from scam communications perpetuated by robocalls and robotexts and give consumers the ability to choose which companies can contact them. Continue Reading
-
News
16 Jan 2024
Prices rise as IT spending trends upward for servers, storage
IT prices increased in December across four key commodities -- a pattern that coincides with a revival in demand for servers and storage following a 2023 drop. Continue Reading
-
News
12 Jan 2024
Big tech reps call for U.S. data privacy law at CES 2024
Corporate data privacy advocates said that a federal law could provide businesses with consistency and facilitate future regulation for artificial intelligence. Continue Reading
-
News
11 Jan 2024
Apple, Google face tumultuous legal year ahead
Google has agreed to make changes to its app store, while Apple has remained largely unscathed after antitrust trials challenged both companies' app store operating models. Continue Reading
-
Tip
10 Jan 2024
12 top business process management tools for 2024
BPMS is becoming a business transformation engine as vendors infuse their tools with powerful AI and hyperautomation capabilities. Read our review of today's top BPM offerings. Continue Reading
-
Tip
10 Jan 2024
10 cybersecurity certifications to boost your career in 2024
A consensus of industry professionals rank these 10 security certifications as the most coveted by employers and security pros -- plus links to 10 vendor security certifications. Continue Reading
-
Tip
10 Jan 2024
10 trends shaping the future of BPM in 2024
Business process management is evolving rapidly as advanced automation, software integration, process simulation and generative AI redefine the way business processes are managed. Continue Reading
-
Tip
10 Jan 2024
7 business process management challenges and how to fix them
Unclear goals, weak C-level support and subpar testing setups are among the factors that can derail BPM initiatives. Learn about seven BPM challenges and ways to overcome them. Continue Reading
-
Tip
05 Jan 2024
10 factors reshaping the role of the CIO in 2024
CIOs will approach the evolving pace of technology, demands for innovation and increasing pressure for efficiency with new urgency. Discover the factors driving these challenges. Continue Reading
-
Tip
03 Jan 2024
Top metaverse platforms to know about in 2024
What's happening in the metaverse? More than you might think. Read about three areas for growth, the concept of spatial computing and which metaverse platforms to track in 2024. Continue Reading
-
Podcast
02 Jan 2024
A challenge: Guiding generative AI toward responsible use
Transparency, explainability and lack of bias are principles for building generative AI systems that work according to ethical rules and are fair for everyone. Continue Reading
-
Tip
02 Jan 2024
14 CIO priorities and trends for 2024
The job is as big and challenging as ever. In 2024, CIOs will be asked to find business value in GenAI, mitigate AI risks and solve the talent crunch, among other pressing issues. Continue Reading
-
Tip
02 Jan 2024
16 BPM best practices to ensure project success
A BPM approach to transformation enables companies to continuously improve and reinvent their business processes, injecting innovation as they go. Learn how to do it right. Continue Reading
-
Tip
28 Dec 2023
5 examples of records management
Examples of records management vary by types of records, such as front- and back-office records, and processes, such as retention schedule management and records disposal. Continue Reading
-
News
19 Dec 2023
U.S.-China relations will affect businesses in 2024
U.S.-China relations will affect U.S. businesses in 2024, whether it's through more export controls or building alliances with other countries on technology. Continue Reading
-
Definition
18 Dec 2023
California Consumer Privacy Act (CCPA)
The California Consumer Privacy Act (CCPA) is legislation in the state of California that supports an individual's right to control their own personally identifiable information (PII). Continue Reading
-
News
15 Dec 2023
DOJ's long-term goals in Google antitrust case unclear
The DOJ faced off against Google this year in an antitrust trial, claiming that Google maintained an illegal monopoly over the online search and search advertising markets. Continue Reading
-
Definition
15 Dec 2023
business process management software (BPMS)
Business process management software (BPMS) helps companies design, model, execute, automate and improve a set of activities and tasks that, when completed, achieve an organizational goal. Continue Reading
-
Definition
15 Dec 2023
What is business process management? A guide to BPM
Business process management (BPM) is a structured approach to improving the processes organizations use to get work done, serve their customers and generate business value. Continue Reading
-
News
14 Dec 2023
Technology inflation rate edges up for storage, IT services
Price hikes persist for professional services and cloud, while an increase in storage costs could reflect a return toward more typical pricing levels after a period of decline. Continue Reading
-
Definition
14 Dec 2023
business process automation (BPA)
Business process automation (BPA) is the use of advanced technology to complete business processes with minimal human intervention. Continue Reading
-
News
06 Dec 2023
Congress might act on AI-generated content in 2024
Misinformation is an issue facing digital platforms that's being exacerbated by AI-generated content, something Congress could tackle in the new year. Continue Reading
-
Tip
06 Dec 2023
7 top business process management benefits, advantages
Streamlined workflows, greater agility and scalability, tighter process controls, reduced risks, lower costs and better customer engagements are among the notable BPM benefits. Continue Reading
-
Definition
04 Dec 2023
PCAOB (Public Company Accounting Oversight Board)
The Public Company Accounting Oversight Board (PCAOB) is a congressionally established nonprofit that assesses audits of public companies in the United States to protect investors' interests. Continue Reading
-
Definition
01 Dec 2023
Universal Process Notation (UPN)
Universal Process Notation is a method for illustrating the steps in a business process. Continue Reading
-
Tip
01 Dec 2023
RPA vs. BPM: How are they different?
Don't confuse RPA with BPM. These process-oriented initiatives are distinctly different but also highly complementary when planning, automating and improving business operations. Continue Reading
-
Definition
30 Nov 2023
standard business reporting (SBR)
Standard business reporting (SBR) is a group of frameworks adopted by governments to promote standardization in reporting business data. Continue Reading
-
News
22 Nov 2023
Possible reasons for Meta disbanding its responsible AI team
After releasing more generative AI tools this year, the tech giant made a controversial move by dismantling its unit dedicated to responsible AI. Continue Reading
-
Tip
17 Nov 2023
AI in risk management: Top benefits and challenges explained
AI and machine learning tools can aid in risk management programs. Here are the potential benefits, use cases and challenges your organization needs to know about. Continue Reading
-
Feature
17 Nov 2023
5 core steps in the risk management process
Implementing an effective risk management process is a key part of managing business risks. Follow these five steps to ensure a successful process. Continue Reading
-
News
16 Nov 2023
Regulating digital industries might require a new U.S. agency
U.S. senators and industry experts are pushing for a new agency to regulate digital industries and tackle competition, privacy and content moderation concerns. Continue Reading
-
News
16 Nov 2023
Cloud costs increase amid SaaS pricing hikes
CIOs face higher SaaS prices, with a new report pegging the inflation rate at 8.7%. The wider cloud segment saw a 3.2% inflation rate in October, according to U.S. government data. Continue Reading
-
Feature
15 Nov 2023
The push is on to build the autonomous enterprise
The concept of an autonomous enterprise is becoming more real as enterprises combine technologies to automate all kinds of human work. Welcome to the 'Autonomous Revolution.' Continue Reading
-
Definition
14 Nov 2023
FTC (Federal Trade Commission)
The FTC, or Federal Trade Commission, is a United States federal regulatory agency designed to monitor and prevent anticompetitive, deceptive or unfair business practices. Continue Reading
-
News
09 Nov 2023
As Congress mulls AI, Biden asks first for data privacy law
Congress could eventually run into a similar issue with AI as data privacy -- states passing a patchwork of laws that become difficult for businesses to comply with. Continue Reading
-
Podcast
06 Nov 2023
Tech industry reaction to Biden's AI executive order mixed
While it's the first extensive statement from the U.S. government on governing and promoting AI, it falls short of providing actionable steps to vendors. Continue Reading
-
Tip
06 Nov 2023
What is a digital transformation strategy? Everything you need to know
A strong DX strategy details an organization's current state, its plans for the future and the actions to achieve those goals. Discover the key elements that should be included. Continue Reading
-
News
31 Oct 2023
Senators defend new federal agency for tackling big tech
A federal agency with a specific focus on digital platforms will help address growing concerns around AI, data privacy and competition, two U.S. senators argue. Continue Reading
-
News
27 Oct 2023
Lack of federal data privacy law seen hurting IT security
Without federal data privacy protections, businesses can freely amass vast amounts of consumer data, raising cybersecurity risks for both consumers and businesses. Continue Reading
-
Definition
25 Oct 2023
integrated risk management (IRM)
Integrated risk management (IRM) is a set of proactive, businesswide practices that contribute to an organization's security, risk tolerance profile and strategic decisions. Continue Reading
-
Tip
20 Oct 2023
11 reasons why digital transformations fail, explained by pros
Digital transformations continue to be challenging and are prone to failure. Learn about 11 fatal mistakes to avoid at all costs. Continue Reading
-
Feature
20 Oct 2023
Risk assessment matrix: Free template and usage guide
A risk assessment matrix identifies issues that present the greatest potential for business disruption or damage. Use this free template to focus risk mitigation plans. Continue Reading
-
News
19 Oct 2023
Cloud inflation affects IT spending trends, GenAI not yet
Gartner's forecast points to rising cloud and services spend. Generative AI is yet to strongly influence IT budgets, but IBM and other providers gear up for growth. Continue Reading
-
Feature
18 Oct 2023
Israel-Hamas war could affect tech industry in Middle East
U.S. businesses investing in the Middle East should engage in contingency planning if the Israel-Hamas war leads to the involvement of nearby regions. Continue Reading
-
Feature
18 Oct 2023
7 risk mitigation strategies to protect business operations
Companies facing a multitude of business risks have various options to mitigate them. Here are seven mitigation strategies to minimize the business impact of risks. Continue Reading
-
Definition
17 Oct 2023
speculative risk
Speculative risk is a type of risk the risk-taker takes on voluntarily and will result in some degree of profit or loss. Continue Reading
-
Tip
12 Oct 2023
12 digital transformation tips and best practices
Successful digital transformation requires agility, speed, cost optimization, technical innovation and cultural change. C-suite commitment and employee buy-in are also critical. Continue Reading
-
News
11 Oct 2023
Google breakup unlikely in event of guilty verdict
Google is going through an antitrust trial in which a guilty verdict could result in remedies to fix the illegal behavior. But it's unlikely that Google would face a breakup. Continue Reading
-
Definition
10 Oct 2023
risk management specialist
A risk management specialist is a role appointed within organizations to identify potential risks that might negatively affect the business. Continue Reading
-
News
05 Oct 2023
U.S. antitrust law enforcers defend actions, lawsuits
The FTC and DOJ, which enforce U.S. antitrust law, are focused on reining in big tech through antitrust lawsuits and revising merger guidelines for modern businesses. Continue Reading
-
Definition
05 Oct 2023
blockchain
Blockchain is a record-keeping technology designed to make it impossible to hack the system or forge the data stored on it, thereby making it secure and immutable. Continue Reading
-
Definition
05 Oct 2023
enterprise risk management (ERM)
Enterprise risk management (ERM) is the process of planning, organizing, directing and controlling the activities of an organization to minimize the harmful effects of risk on its capital and earnings. Continue Reading
-
Feature
05 Oct 2023
13 types of business risks for companies to manage
To avoid business problems and operate effectively, companies need to be ready to deal with these common types of risks as part of their risk management programs. Continue Reading
-
News
04 Oct 2023
Capital One study: Businesses battle with self-service data
Technical, cultural and financial issues hinder organizations from enacting self-service data strategies that include business users as well as data specialists Continue Reading
-
Definition
03 Oct 2023
Whistleblower Protection Act
The Whistleblower Protection Act of 1989 is a law that protects federal government employees in the United States from retaliatory action for voluntarily disclosing information about dishonest or illegal activities occurring in a government organization. Continue Reading
-
News
02 Oct 2023
Lawyers win in race to generative AI without adequate laws
As Congress drags its feet on passing AI regulations, lawyers are filling the vacuum by helping enterprises navigate court rulings and regulations based on outdated laws. Continue Reading
-
Feature
02 Oct 2023
Generative AI in the enterprise raises questions for CIOs
Technology and business leaders are exploring pivotal issues surrounding adoption strategy, architecture and the IT organization's management responsibilities. Continue Reading
-
News
26 Sep 2023
U.S. antitrust case against Amazon not a clear win
The FTC is looking to make an antitrust case against Amazon for using anticompetitive strategies to harm both sellers and shoppers on its platform. Continue Reading
-
Tip
25 Sep 2023
How to add digital signatures to a PDF
Organizations use digital signatures to secure agreements. Common document applications, such as Adobe Acrobat and macOS Preview, let users quickly add digital signatures to PDFs. Continue Reading
-
Definition
21 Sep 2023
governance, risk and compliance (GRC)
Governance, risk and compliance (GRC) refers to an organization's strategy for handling the interdependencies among the following three components: corporate governance policies, enterprise risk management programs, and regulatory and company compliance. Continue Reading
-
Definition
19 Sep 2023
bitcoin mining
Bitcoin mining is a type of cryptomining in which new bitcoin are entered into circulation and bitcoin transactions are verified and added to the blockchain. Continue Reading
-
News
19 Sep 2023
U.S. government shutdown would crush CHIPS Act momentum
A U.S. government shutdown would significantly impact implementation of the CHIPS and Science Act of 2022 as federal workers would be forced to stay home from work. Continue Reading
-
Definition
19 Sep 2023
total risk
Total risk is an assessment that identifies all the risk factors associated with pursuing a specific course of action. Continue Reading
-
Definition
18 Sep 2023
electronically stored information (ESI)
Electronically stored information (ESI) is data that is created, altered, communicated and stored in digital form. Continue Reading
-
News
15 Sep 2023
DOJ faces hurdles in antitrust battle with Google
The Dept. of Justice will need to overcome several hurdles to prove Google's alleged anticompetitive conduct in the online search market. Continue Reading
-
Tip
14 Sep 2023
How CIOs can build cybersecurity teamwork across leadership
Cross-departmental relationships are key to long-term business success. Discover why CIOs must focus on teamwork with these three C-suite roles for highly effective cybersecurity. Continue Reading
-
Feature
13 Sep 2023
Top 10 benefits of blockchain for business
Blockchain's unique characteristics address many business issues. Here are 10 important benefits of blockchain and examples of the industries taking advantage of them. Continue Reading
-
Definition
11 Sep 2023
What is risk management and why is it important?
Risk management is the process of identifying, assessing and controlling threats to an organization's capital, earnings and operations. Continue Reading
-
Tip
08 Sep 2023
Risk prediction models: How they work and their benefits
Accurate risk prediction models can aid risk management efforts in organizations. Here's a look at how risk models work and the business benefits they provide. Continue Reading
-
Definition
08 Sep 2023
key risk indicator (KRI)
A key risk indicator (KRI) is a metric for measuring the likelihood that the combined probability of an event and its consequence will exceed the organization's risk appetite and have a profoundly negative impact on an organization's ability to be successful. Continue Reading
-
Definition
07 Sep 2023
distributed ledger technology (DLT)
Distributed ledger technology (DLT) is a digital system for recording the transaction of assets in which the transactions and their details are recorded in multiple places at the same time. Continue Reading
-
Definition
06 Sep 2023
smart contract
A smart contract is a self-executing computer program that automatically executes the terms of a contract without the involvement of third parties. Continue Reading
-
Definition
31 Aug 2023
IT controls
An IT control is a procedure or policy that provides a reasonable assurance that the information technology (IT) used by an organization operates as intended, that data is reliable and that the organization is in compliance with applicable laws and regulations. Continue Reading
-
Definition
30 Aug 2023
three lines model
The three lines model is a risk management approach to help organizations identify and manage risks effectively by creating three distinct lines of defense. Continue Reading
-
Definition
30 Aug 2023
IT organization (information technology organization)
An IT organization (information technology organization) is the department within a company that's charged with establishing, monitoring and maintaining information technology systems and services. Continue Reading
-
News
29 Aug 2023
Microsoft Teams attack exposes collab platform security gaps
Criminal and state-sponsored hackers are ramping up cyberattacks on instant messaging platforms and other workplace collaboration tools. Meanwhile, enterprises' readiness lags. Continue Reading
-
Tip
29 Aug 2023
The CIO's role in strengthening cybersecurity
To effectively tackle security risks, organizations should proactively address the complexities of information security. Learn how CIOs can play a key role in cybersecurity. Continue Reading
-
News
22 Aug 2023
Generative AI adoption to grow with economic confidence
A PwC survey is the latest data point signaling a return to innovation spending, with generative AI adoption in the C-suite's plans. But business leaders remain sensitive to risk. Continue Reading
-
Feature
16 Aug 2023
Top 12 risk management skills and why you need them
Effective risk management is necessary in all parts of a business. Here are a dozen skills that risk managers need to be successful in their jobs. Continue Reading
-
Tip
16 Aug 2023
6 open source GRC tools compliance professionals should know
Organizations must meet a variety of regulatory compliance requirements today. Here's a look at six open source GRC tools and related resources that might help. Continue Reading
-
Tip
15 Aug 2023
Top 4 information security strategy essentials CIOs need
Right now, hackers are targeting your organization. Fight back by learning how CIOs can create a resilient and strong information security foundation. Continue Reading
-
Feature
15 Aug 2023
ISO 31000 vs. COSO: Comparing risk management standards
ISO 31000 and the COSO ERM framework are the two most popular risk management standards. Here's what they include and some of their similarities and differences. Continue Reading
-
News
14 Aug 2023
Cloud costs continue to rise among IT commodities
CIOs can expect higher cloud costs as the U.S. government's wholesale inflation index hits its highest rating for the technology category that includes this IT model. Continue Reading
-
News
11 Aug 2023
Biden order will force companies to weigh China investments
Companies are facing a new executive order and potentially congressional action restricting outbound investments in technologies such as quantum computing and AI in China. Continue Reading