Risk management and governance

With today's exponential advances in technology, CIOs, CTOs, CDOs and other IT leaders need critical advice on risk management and governance. Get news, guides and tips about technology-related compliance and data privacy issues, regulatory frameworks, limits on enterprise software development, cyber risk issues, metaverse dangers, cryptocurrency regulation and more.

Top Stories

Feature 29 Jan 2026
Safe by design: AI personalization in fintech

As AI drives deeper personalization in financial services, CIOs are under pressure to deliver growth while ensuring models remain explainable, secure and compliant. Continue Reading
By
- Sean Michael Kerner
Feature 28 Jan 2026
How DXC Technology uses agentic AI in the SOC

CIOs must explore new security approaches as cyber threats grow more complex. Explore how DXC Technology deployed agentic AI in the SOC to enhance threat detection. Continue Reading
By
- Tim Murphy, Site editor

Tip 13 Jun 2019
4 steps to remain compliant with SOX data retention policies

Data retention policy is inherent to Sarbanes-Oxley Act compliance. In this tip, learn SOX data retention best practices to remain regulatory compliant. Continue Reading
By
- Judith Myerson
Feature 17 Apr 2018
Tackling security debt: The role of risk register, patch management

In this Q&A, Akamai's Dave Lewis offers pointers on how to address security debt and also discusses how organizations can avoid incurring such debt. Continue Reading
By
- Mekhala Roy
Definition 01 Feb 2013
business continuity management (BCM)

Business continuity management (BCM) is a framework for identifying an organization's risk of exposure to internal and external threats. Continue Reading
By
- Karen Goulart
Quiz 15 Aug 2011
Test your social media risk management IQ: A SearchCompliance.com quiz

Proliferating social networks have cast a spotlight on social media risk management. Take our quiz to find out if you are up to speed on social media. Continue Reading
By
- SearchCompliance.com Staff
Definition 07 Mar 2011
control framework

A control framework is a data structure that organizes and categorizes an organization’s internal controls, which are practices and procedures established to create business value and minimize risk. Continue Reading
By
- TechTarget Contributor
Feature 22 Jun 2009

Chapter excerpt: Decision-making processes and IT governance

Find out how sound decision-making processes form the foundation of IT governance policies by allocating decision rights and accountability. Continue Reading
Definition 12 Mar 2009
Electronic Communications Privacy Act (ECPA)

The Electronic Communications Privacy Act (ECPA) is a United States federal statute that prohibits a third party from intercepting or disclosing communications without authorization. Continue Reading
By
- TechTarget Contributor
Definition 29 Jan 2009
Fair Credit Reporting Act (FCRA)

The Fair Credit Reporting Act (FCRA) is United States federal legislation that promotes accuracy, fairness and privacy for data used by consumer reporting agencies. Continue Reading
By
- TechTarget Contributor
Definition 06 Mar 2008
FFIEC compliance (Federal Financial Institutions Examination Council)

FFIEC compliance is conformance to a set of standards for online banking issued in October 2005 by the Federal Financial Institutions Examination Council (FFIEC)... (Continued) Continue Reading
By
- TechTarget Contributor