Blog
Page 49 of 152
Employee Spotlight: Marianne Schrader, Senior Customer Success Manager
Customer success (aka customer success management or client advocacy) is the process of increasing customers’ satisfaction with a company’s product or service. It’s a specialized form of customer relationship management, and when done effectively, can help reduce churn, improve retention and renewals, and drive revenue. Customer success is an integral part of Reciprocity’s success – […]
January 27, 2023
3 Reasons Why It’s Critical to Consider Relationships When Building Reports
When managing risk and compliance programs, one vital part of the job is reporting your program’s status and results to other groups: the board, management, external auditors, regulators. And when building reports, CISOs must pay careful attention to the relationships of the intended audiences. In Get the Most From Your GRC Data Reports, governance, risk, […]
5 Essential Steps to Meet Your Escalating Duty of Care
A security leader’s playbook for protecting against rising penalties & regulations Security leaders: the time is NOW. Meet your duty of care OR face the SEC because what you do to secure sensitive data – and how well you do it – could be subject to regulatory scrutiny, fines, and penalties. Not just on your […]
January 25, 2023
Understanding the PCI Levels of Compliance
Every merchant and service provider that processes, stores, or transmits credit card data must comply with the Payment Card Industry Data Security Standard (PCI DSS) for cybersecurity and privacy – but not all must travel the same path to PCI compliance. The truth is that not all retailers face the same amount of security risk. […]
Tags: Audit Management, PCI
FINRA Talks Cyber Risks
This article first appeared on Radical Compliance January 11, 2023. FINRA, the regulator for broker-dealer firms that every other compliance professional should follow anyway, has given us yet another piece of nifty guidance: its annual report on regulatory examinations, brimming with advice about risks related to cybersecurity, anti-money laundering, and other issues. Like most other […]
January 20, 2023
Is AWS FedRAMP Certified?
FedRAMP is the short-hand name for the Federal Risk and Authorization Management Program, which the U.S. federal government uses to assess the security of cloud-based vendors and service providers. If a company wants to provide technology services to federal agencies, and delivers those services via the cloud, that company must be FedRAMP-certified. To assess the […]
Tags: FedRAMP, Technology
January 18, 2023
There’s a Better Way to Build Your Risk Register and Avoid Populating It With Vulnerabilities
January 17, 2023
How Third-Party Risks Have Evolved in 2021
The Covid-19 pandemic permanently changed how many companies operate. With remote work increasingly common and supply chain challenges more frequent, many organizations overhauled how they approach day-to-day operations. That included more reliance on third parties for mission-critical goods and services – which, consequently, drove up organizations’ third-party risk challenges as well. Today, third-party risks are […]
What is the Statement of Applicability in ISO 27001?
ISO 27001 is a globally recognized standard for organizations to build information security management systems. If your organization wants to achieve ISO 27001 compliance and be certified as such, you’ll need to create a “Statement of Applicability” – a summary of your ISO 27001 controls, and one of the most important documents you’ll need on […]
January 12, 2023
Page 49 of 152