Archer

Introducing RSA Archer GRC 6

We often speak about the rate of change in today’s fast paced business environment and the challenges associated with trying to keep up and adapt. So why does “operating in a reactive mode” keep getting a bad name? What’s so inherently wrong with that? Wouldn’t “not” reacting be worse? And what other choice do we…

Breaking the Value Ceiling

My team and I have been having many discussions lately on the evolution of GRC programs and the value of integrating or supplementing tangential processes with data flowing in and out of risk management activities.   Much of this discussion is fueled by the efforts we have had on the solution development front.  Over the past…

Groove Theory of GRC – Postulate #3: The Creative Process

In my last blog post, I talked about the importance of building collaboration across the organization to bring the greatest value to your GRC program.  For this blog, I am borrowing a piece of wisdom from an old sage of rock and roll.  I heard an interview recently with Mick Fleetwood (of Fleetwood Mac fame)…

Business Continuity: How to Apply Enterprise Risk Management to Your BCM Planning Efforts…and Vice Versa!

by Patrick Potter, RSA Archer GRC Solutions Business Continuity Management (BCM) programs typically do a good job of evaluating business criticality through performing Business Impact Analyses (BIAs) to determine recovery priorities.  However, how many BCM and IT Disaster Recovery (DR) programs adequately assess risks starting at the overall program level down to the process or…

The Space Between the 1s and 0s – Redux

A few months ago, I wrote a short blog  using the “space between the 1s and 0s” as a metaphor to discuss dimensions of data that are beyond just the digits sitting on the disk drive.  These dimensions included how the data was created, who created it and why it was created along with the…