As the Internet of Things (IoT) evolves, it will offer organizations the opportunity to create an unprecedented range of potential products and services. By embedding the internet into computer systems inside of cars, appliances, and other physical things, manufacturers will be able to offer new functionality as well as additional services. Smart homes and intelligent cars are already on the consumer market in many countries. Applications for this technology in a business-to-business environment are equally promising.
September 05, 2017 posted by Aravo
Three ways the Internet of Things and the GDPR will impact Third Party Risk
Topics: third party risk management, Data Security & Privacy, GDPR, information security, cybersecurity, cybersecurity regulation, cyber-security, cyber risk, cyber regulation, internet of things, IoT
August 16, 2017 posted by Aravo
Third party scorecards: Making an improved culture of collaboration a reality
Scorecards that measure the performance of suppliers and vendors that a company contracts with have been a business tool embraced by procurement for some time now.
However, there’s an evolution underway. Increasingly businesses are recognizing that a holistic third party scorecard that also embeds risk and compliance metrics, can not only help drive continuous improvements in vendor performance, but can also help reduce the risk that third party engagements may bring to the enterprise. What’s more, scorecards can also be leveraged as a collaborative tool to help raise the collective bar of the third party ecosystem – especially in areas such as IT security. Operational risk, Information Security and Compliance are all now stepping up to the scorecard plate.
Topics: risk and compliance, third party relationships, Data Security & Privacy, information security, reputational risk, regulatory risk, risk-scoring, third party risk, data privacy, performance scoring, organization risk, regulatory compliance
August 02, 2017 posted by Aravo
Five Top Trends in Cybersecurity Regulations
Cyber and information security is considered by some to be the biggest challenge organizations collectively face today. A recent study conducted by Juniper Research predicts the cost of data breaches to reach $2.1 trillion globally by 2019. These incidents – whether they are caused by criminals, foreign governments, or hacktivists – can be costly for organizations, distressing for consumers, and create the possibility of real systemic damage to whole industries; even nations. So, it’s hardly surprising that regulators and legislators around the world are moving into action.
Topics: third party risk management, Data Security & Privacy, GDPR, information security, cybersecurity, cybersecurity regulation, cyber-security, cyber risk, cyber regulation
July 26, 2017 posted by Aravo
Aravo and SecurityScorecard Partner to Improve Actionable Third Party Cybersecurity
We are delighted to announce the integration of the Aravo Enterprise platform with SecurityScorecard’s platform, to provide a fully integrated solution for enhanced third party cyber-risk management.
Topics: third party risk management, Data Security & Privacy, cybersecurity, SecurityScorecard
July 20, 2017 posted by Anna Mazzone
Expert Series Podcast - Pt. 3 - Looking toward the future with GDPR & Third Party Risk – with consideration to privacy regulations in other countries
Topics: third party risk management, Data Security & Privacy, GDPR, General Data Protection Regulation, cybersecurity, data privacy, corporate regulation, podcast
June 30, 2017 posted by Anna Mazzone
Expert Series Podcast - Session 2 - A Deeper Dive into GDPR & Why Organizations Need To Be Thinking about Third Party Risk
Session 2 of 3 (approx. 15 minutes)
I had the great pleasure to speak with Simon McDougall, GDPR expert and Managing Director at Promontory Financial about GDPR & Why Organizations Need To Be Thinking About Third Party Risk. Simon shared insights around GDPR best practices, possible blind-spots, and approaches for Board members, C-suite and middle-management.
Topics: third party risk management, Data Security & Privacy, GDPR, General Data Protection Regulation, cybersecurity, data privacy, corporate regulation
June 15, 2017 posted by Anna Mazzone
Expert Series Podcast - GDPR & Why Organizations Need To Be Thinking About Third Party Risk
Session 1 of 3 (approx. 18 minutes)
I had the great pleasure to speak with Simon McDougall, GDPR expert and Managing Director at Promontory Financial about GDPR & Why Organizations Need To Be Thinking About Third Party Risk. Simon shared insights around GDPR best practices, possible blind-spots, and approaches for Board members, C-suite and middle-management.
Topics: third party risk management, Data Security & Privacy, GDPR, General Data Protection Regulation
April 12, 2017 posted by Aravo
Third Party Risk Management in the Dynamic of Business Scale, Complexity, and Change
Why TPRM objectives fail – and what Global 2000 companies need to succeed
Even though large organizations have invested time, attention, and resources into third party risk management (TPRM) over the past decade, it’s clear that many programs are failing to deliver on their primary objective - keeping the organization safe.
Topics: Anti-bribery & Anti-corruption, risk and compliance, third party risk management, Data Security & Privacy, Responsible Sourcing, Global 2000, compliance risk, tprm, business complexity, scale, business change, business scale, white paper, third parties
April 10, 2017 posted by Aravo
What do I need to ask when buying a Third Party Risk Management (TPRM) solution?
Third party risk management is a complex discipline, that combined with the scale, complexity, and change dynamics of any Global 2000 organization, can often lead to false starts with technology implementations.
It’s important to get enterprise software purchase decisions right – they are the fulcrum of successful third party risk programs for the business, they impact on the adoption and performance of many internal users across the enterprise, and they can have an impact on the careers of those selecting them.
Topics: FCPA, risk and compliance, Anti-Bribery and Anti-Corruption, OCC, third party risk management, Data Security & Privacy, Registration & Qualification, Conflict Minerals, GDPR, General Data Protection Regulation, aravo, ABAC, risk mitigation, sustainable procurement, regulatory risk, tprm
March 01, 2017 posted by Aravo
State and Federal Financial Services Regulators Apply Focus on Cybersecurity and Third Party Relationships
In a sign of what may well be coming for all highly-regulated industries around the world, US financial services regulators are in the process of significantly enhancing their cybersecurity rules, including substantial new rules impacting third party relationships.
Topics: OCC, Financial Services, Data Security & Privacy, fsr, information security, cybersecurity, fdic, privacy, fsscc, bits, federal reserve, bank
