Risk Management
The Digital Operational Resilience Act (DORA), an EU regulation aimed at bolstering defenses against digital threats in the financial sector, poses significant challenges for financial institutions. Covering over 22,000 financial entities and their ICT service providers, DORA sets stringent standards for managing, responding to, and recovering
At the 2024 E-Scrap Conference in Orlando, Bob Johnson brought attention to a pressing but often overlooked issue in the IT asset disposition (ITAD) sector: the risks associated with clients' non-compliance in IT hardware asset management. Despite ITAD providers generally being more secure and compliant than their clients, Johnson expressed
In the ever-evolving landscape of the financial sector, the concept of tail-risk management has gained significant attention. Tail risks, though rare, can have catastrophic impacts on financial institutions and the global economy. The recent global pandemic, financial crises, and climate change events have underscored the importance of being
In the rapidly evolving landscape of third-party risk management (TPRM), Mitratech stands out with its innovative integration of artificial intelligence (AI) and environmental, social, and governance (ESG) capabilities. Alastair Parr, Executive Director of GRC Solutions at Mitratech, provides insights into how the Prevalent platform is addressing
It is alarming that the majority of users fail to regularly back up their data, despite numerous tools available for this crucial task and the ever-present risks of hardware failure, cyber-attacks, or accidental deletions. According to a study by Handy Recovery Advisor, only 33% of users back up their files on a regular basis. This reveals a
As organizations increasingly adopt automated software development practices, the necessity for robust security measures within continuous integration and continuous delivery (CI/CD) pipelines has grown. A startling statistic reveals that 57% of organizations have experienced security incidents tied to exposed secrets within insecure DevOps