Search Results

Showing results for search query trust but verify
Total article found: 12

Blog

What Is A SOC Report?

What is a SOC Report? Understanding SOC 1, SOC 2, and SOC 3 System and Organization Controls reports, or SOC[...]

Read More

What are ‘Misinformation, Disinformation, and Malinformation’ (MDM) Incidents?

What are ‘Misinformation, Disinformation, and Malinformation’ (MDM) incidents? Days before Russia invaded Ukraine, the U.S. Department of Homeland Security’s Cybersecurity[...]

Read More

2022 Third-Party Risk Management TPRM Toolkit FAQs

Standardized Information Gathering (SIG)

Read More

Risk Management and SOC Reports: Hung By The Chimney With Care

December seems to be a month fixated on fancy footwear. On Christmas Eve, some of us will “hang stockings by[...]

Read More

SCA: The Go-To Tool For Virtual Risk Assessments

On March 11, 2020, the World Health Organization (WHO) declared COVID-19 a pandemic. That spring, organizations were forced to transition[...]

Read More

Facebook Outage: Human Element is the Most Vulnerable Element

Facebook and its app family (including Instagram and WhatsApp) seemingly disappeared from the internet for over five hours on Monday.[...]

Read More

The Next Generation of Third Party Risk

As a follow up to the 8th annual Shared Assessments Summit, the themes of governance continued to focus on third[...]

Read More

Assurance Processes to Address Fourth Party & Subcontracting Risks

Part III of a IV part series In part II of the four part blog series, Regulators Expectations for Third[...]

Read More

Be Wary of All of the New “Experts” in Third Party Risk Management

With the recent increased focus of the regulatory agencies and standards bodies on third party risk management, the market is[...]

Read More

Balancing Compliance & “Ban The Box”:

According to a National Employment Law Project (NELP) report, nearly 65 million Americans have a criminal record that could be[...]

Read More

Hands-On Assessment

In my previous blog, The SIG – The Swiss Army Knife of Risk Assessment, I commented on the versatility of[...]

Read More

The NSA, Snowden and Third-Party Risk: Preliminary Lessons Learned

Remember this: Edward Snowden Worked for a Third-Party Vendor. While it remains uncertain what exactly Mr. Snowden shared with other[...]

Read More