Name: The Five Layers of a Mature GRC Program
Start: 2023-01-26T21:45:00Z
End: 2023-01-26T21:45:25.000Z
Location: BrightTALK
Rating: 0

LogicGate® is a global, market-leading SaaS company empowering customers to effectively manage and scale their cyber, governance, risk, and compliance (GRC) functions to easily and effectively accelerate program maturity. Recognized by The Forrester Wave™: Governance, Risk, And Compliance Platforms, Q4 2023 report as one of four leading global GRC platforms, Risk Cloud® is built with usability in mind, including a no-code interface and graph database that makes the technology flexible, agile, and scalable to support various levels of GRC maturity and bolster business outcomes. With an unwavering commitment to fostering organizational resilience, LogicGate helps customers save time through automation, quantify risk, strengthen their security posture, and gain visibility across their risk landscape.

As artificial intelligence (AI) continues to advance rapidly and organizations expand their usage to optimize efficiency and productivity, implementing internal AI policies to ensure regulatory compliance and minimize exposure remains a hot topic.

Join us as we explore emerging AI rules, like NIST AI RMF, and how compliance teams can implement effective processes and controls to proactively identify, assess, and mitigate the largest AI risks, ensuring compliance with internal policies and external regulations.

Steps will include how to:

• Gain clarity around AI governance policies and procedures
• Implement controls for AI risk mitigation
• Thoughtfully integrating AI governance into cybersecurity
• Assess AI risk from third-party vendor

*CPE credits not offered*

Proactive AI Compliance: 4 Essential Steps to Minimize Exposure

It can be incredibly difficult to understand the real risk vendors pose to your organization. This creates friction when trying to plan for a likely outcome if they were breached, and how to delineate programs that create the most exposure.

Operationalizing information and prioritizing criticality is imperative to your business strategy. Join the LogicGate and Black Kite teams for a conversation on how to understand financial impact across vendor risk and use it to prioritize programs such as cybersecurity, business continuity, disaster recovery, and more.

Join us to:

• Learn how to manage financial risk to understand the impact of third and fourth parties
• Hear from experts on how to understand the business disruption or financial impact of a vulnerability
• Gain tips and best practices for triaging third-party risks and communicating them to the business

LogicGate Live: Financial Risk Remediation

If your company is to survive a growing number of relentless attacks, you had better have eyes everywhere. But no one has that many eyes. The better strategy is to know your weak points and guard those closely.

This webinar offers insights on how to realistically assess your company’s vulnerabilities, including how to prioritize them so that you put the most resources into protecting the vulnerabilities that will likely cost the most if exploited. This webinar is all about developing a custom-fitted strategy. 

Join us to learn:

• How to realistically assess your company's vulnerabilities
• How to identify and prioritize risks to information and systems
• How to select controls to mitigate and treat identified risks
• Methods to improve overall resiliency and cyber posture
• Why documenting, reviewing, and regularly updating findings is critical

Your Enterprise Cyber Risk Assessment

When structured correctly, Governance, Risk, and Compliance (GRC) can enable enterprises to align IT and business goals, while mitigating risks and abiding by industry and government requirements.

Effectively manage your resources and unify your enterprise by utilizing emerging technology that drives data-driven decision making. In this webinar, LogicGate CISO, Nick Kathmann, and Dr. Pape Cissé, Chief Information Officer at AmeriCorps, reveal ways to make GRC easier and more automated to push your company to the next level.

Join us to learn:

• How GRC safeguards your business from penalties while increasing customer trust
• How data privacy can impact disaster recovery and risk management
• Several benefits of GRC implementation for organizations
• Why GRC requires a unified and collaborative approach from different departments
• How the future of AI governance will impact GRC

The CIO's Guide to Enhancing GRC in 2024

Historically, GRC was viewed as one line in a budget sheet, but that is rapidly changing.

GRC practitioners are elevating their programs with tools and technologies that aggregate data and story-tell situational risk, security, compliance changes and more, so businesses can make risk-based decisions to move the needle forward. LogicGate Co-Founder and CEO, Matt Kunkel, and CISO, Nick Kathmann, will share:

• Why good security pays for itself
• The role GRC plays in the boardroom
• How to connect GRC programs to business impact

Optimizing Risk: GRC Is No Longer a Cost Center – It’s a Business Enabler

Join us for the GRC edition of the best-selling book: How to Win Friends and Influence People.

Hear GRC leaders from ANSA McAL Limited, BCU, and Equiniti share their experiences and insights on how to build allies and influence company strategy through data and story-telling. This panel discussion will cover:

• The need for GRC teams to act as "critical friends" to the business
• The process of building out a risk management framework, engaging stakeholders, and demonstrating the value of risk management 
• The cultural transition to integrating risk management into the organization's culture

How to Win Friends and Influence People: GRC Edition

While generative AI can propel organizations to be more efficient, effective and produce added value, the lack of clarity and understanding about how to quickly adopt AI models, govern usage and have the flexibility to scale are creating delays in implementing AI guidelines and guardrails. As AI rapidly evolves, taking a lackadaisical approach may come with ramifications.

GRC professionals must lead governance programming to help their organizations move fast, but safely to avoid the unintended consequences.

Join our guest speaker, Forrester Senior Analyst Cody Scott, alongside Jay Jamison, President of Product and Technology at LogicGate, for a conversation on how to efficiently adopt AI with the needed safety protections and protocols to govern successfully, and carve out a competitive advantage.

Navigating AI Governance: Opportunities, Outcomes, and Consequences

Effective Enterprise Risk Management requires collaboration and trust. Melanie Croy, VP, ERM Program Manager at United Community Bank and Risk Cloud Power User and Process Owner knows this well.

Together with a cross-functional team, Melanie created a New Business Activity Risk Assessment in Risk Cloud to develop a holistic view of the most significant risks, support  capital, earnings, and strategic objectives, and enhance risk response decisions, and reduce operational surprises and losses.

Join us to:

• Uncover how the team at United Community Bank approached building a New Business Activity Risk Assessment process in Risk Cloud.
• Gain insight into the factors that guided process decision making, and how they brought it to life using cross-functional workflows and processes.
• Learn how Enterprise Risk Management in Risk Cloud brought subject matter experts throughout UCB together for risk identification, risk assessment, and risk response, plus the benefits and outcomes their organization has experienced so far.

LogicGate Live: Collaborative Risk Management

Join Elisabeth Quillatre, Risk Management, Compliance and Privacy Officer at Vinted to learn how to mature immature risk processes, inform various business units about different areas of risk, and standardize how end users rate risks. 

You'll be able to:

• Understand how to mark a future process as strategic
• Hone in on top risks to lead decision making 
• Empower risk leaders through ownership
• Get comfortable with challenging risk scores

How We Turned Risk Into a Strategic Advantage

In this keynote, Michael Rasmussen, Analyst & GRC Pundit, equates the pursuit of excellence in Governance, Risk Management, and Compliance (GRC) to a challenging mountain climb, emphasizing the need for meticulous planning, the right tools, and adaptability in navigating the complex regulatory and risk landscapes. This keynote delves into the parallels between trekking and GRC implementation, highlighting the importance of a strong foundational base, the interconnectivity of GRC elements, and the use of technology in scaling new heights. We'll also discuss overcoming common pitfalls and the continuous effort required to maintain GRC maturity, comparing to the ongoing commitment needed in climbing to provide a comprehensive roadmap for organizations aiming to reach the summit of GRC excellence.

The GRC Journey: Your Climb to GRC Value & Maturity

Advancements in data aggregation, real-time monitoring, and artificial intelligence have unlocked a new era in risk management: dynamic GRC. Join Nick Kathmann, CISO at LogicGate, for an exploration of the possible as GRC continues its evolution from manual and reactive to dynamic and predictive. 

Nick will discuss:

• The importance of integrating GRC teams and technologies for near-real-time visibility and monitoring of critical risks at scale
• Practical examples how risk intelligence can inform important decisions around resource allocation, prioritization, and mitigation
• Steps you can take today on your own path to dynamic GRC

Dynamic GRC: Agile Risk Management

The risk landscape is becoming more connected, complex, and challenging, which means risk teams will require a holistic, robust, and mature GRC process that can be adopted enterprise-wide.

If you’re wondering “What is Holistic GRC, and why does it matter?,” be sure to join us for our next LogicGate Live session. LogicGate’s Solutions Engineering and Technical Account teams will discuss the value of interconnected GRC, the risks of silos, and tips for how you can start thinking more holistically about your GRC program. 

Join us to:

• Learn about the value and outcomes you can expect from building connectivity and flexibility of processes, data, reports, and teams across all levels of your organization.
• Walk through contrasting scenarios when GRC use cases work together and when they don't, to illustrate the benefits and outcomes.
• Get access to the Risk Cloud Solution Wheel and Use Case Maps, and see a live demo of Holistic GRC in action.

LogicGate Live: We LOVE Holistic GRC

It’s a new year, and with it comes a new Risk Cloud experience. If you’re looking to create happy end-users, be sure to join us to hear from LogicGate's Product Design and Product Management Teams about our reimagined user-experience, its value and benefits, and how to build for 2024 with the end-user in mind.

Join us to:

• Learn about the benefits of the reimagined record experience, and how you can maximize its benefits.
• Learn best practices for building applications and workflows to maximize end-user adoption, inclusive of formatting, form design, guidance, and reports.
• Get a sneak peak of what’s next for UXRI.

LogicGate Live: New Year, New End-User Experience

Your personal resolutions may be defined, but your organization’s risk resolutions might be a bit more ambiguous. Do you start from scratch? Or continue to focus on unresolved issues from 2023? 

With continued budget cuts, growing third-party relationships, and disruptive technology (hint. hint. AI), security teams must structure their 2024 roadmaps to focus on the most significant and costly impacts to the business, while also preparing for unexpected changes along the way.

Join us as we discuss critical risk management priorities for 2024 and how to pivot when they inevitably evolve. 

This live panel will cover how to strategize and focus on three main priorities: 

• Single point of failure risk management 
• The threat of low complexity AI attacks
• Supply chain resiliency

Attack Prevention Priorities for 2024: Single Point Failure, AI, Supply Chain

Switching from traditional risk analysis methods like ordinal lists or red-yellow-and-green charts to more modern approaches like risk quantification requires a paradigm shift in how you think about measuring risk, but the increased accuracy, specificity, and reliability you’ll gain by doing so pays dividends.

On this episode of GRC & Me, Netflix’s Tony Martin-Vegue joins LogicGate’s Chris Clarke to explore the best ways to navigate this transition, how to learn and leverage popular risk quantification frameworks like Open FAIR, and why you shouldn’t completely throw your colored charts out the window just yet.

Shifting Gears To Quantify Risk with Netflix’s Tony Martin-Vegue

They say it takes a thief to catch a thief, so why not a hacker to catch a hacker? 

That was the premise behind Ted Harrington’s Independent Security Evaluators, a company dedicated to poking holes into other companies’ cyber defenses — for the right reasons, of course. On this episode of GRC & Me, Ted takes LogicGate’s Chris Clarke on a journey down the benevolent hacker’s rabbit hole, where they discuss:

• The difference between white box and black box testing (and which is better.)
• Why carrying these exercises out can build trust and become a competitive advantage in third-party risk assessment.
• Why it’s important to shift your mindset from one that views security as an obstacle to one that views it as an opportunity.
• Uncovering the unknown unknowns in cybersecurity.
• How “defense in depth” strategies can put security teams a step ahead of threat actors.
• The four traits that lead hackers to be successful, and why thinking like one can be an effective way to bolster your cyber defenses.

Please Hack Me: Hacking Companies for Good

Join industry experts from LogicGate, OCEG, Tyler Technology, and Business Solutions, Inc. as they discuss preliminary findings from OCEG's recent survey on the use of artificial intelligence as a support for GRC and review some of the key questions about AI for GRC that every risk professional should be discussing with their leadership team.

Highlights:

• Gain insight from the findings of OCEG's survey on the use of AI for GRC
• Outline the ways that AI benefits GRC capabilities and outcomes, such as time-savings, scalability, and automation
• Review the critical AI for GRC questions that you should be discussing with your leadership team
• Learn how your GRC peers and leaders are strategically vetting, integrating, and planning for AI in risk management

How Are GRC Leaders Using AI?

Few careers involve managing as much risk as one where you’re responsible for launching humans riding gigantic rockets into outer space. That’s exactly what Barrios Technology Chief Strategy Officer Ginger Kerrick did during her three-decade career working for NASA.

On this episode of GRC & Me, Ginger joins LogicGate’s Chris Clarke to discuss methods for developing methodical, standardized thought processes for risk decision-making in high-stakes scenarios, how NASA employees are trained to separate logic from emotion, how disasters can inform future mitigation planning, and why the most important part of managing risk is having the right leaders in place.

Rockets, Radios, and Risk: How NASA Manages Uncertainty in Orbit

Managing Risk on the Frontlines of the Financial Sector

Staying in the Fed’s Favor: Navigating Government Contracts with Intel Federal

Building Robust Risk Cultures Through Collaborative Cyber Risk Management

Using Cyber Risk Quantification to Make the Right Risk Decisions

Preparing for DORA, NIS2, and the New European Push for Cybersecurity

The Risks and Rewards of AI in Business Automation

Positioning GRC as an Enabler with Integrated Data

Breaking Down Organizational Silos With a Common Risk Language

Measurement as a Foundation for Communicating Risk

Building the Business Case for Getting the Right GRC Technology

Enhancing Your Business Continuity Framework in a Volatile Environment

Prices are Rising. How to Prepare for Inflation Now & Later

How To Build a Risk Practice

Going Paperless and Improving GRC Processes

The Risks We Cannot See

GRC & Me Podcast

Listen as Andy Ruse, LogicGate’s President of Field Operations, sits down with Cooley’s Mike Santos, Director of Security and Information Governance, to discuss his five-layer maturity model for building effective GRC programs, the different things a risk practitioner has to consider in decision making, and his own recommendations for maturing any risk program.

The Five Layers of a Mature GRC Program

Enterprise Security

Compliance

Risk Management

Digital Transformation

Cyber Security

Information Security

IT Security

Risk Mitigation

Risk Assessment

Vulnerability Management

The IT security community on BrightTALK is composed of more than 200,000 IT security professionals trading relevant information on software assurance, network security and mobile security. Join the conversation by watching on-demand and live information security webinars and asking questions of experts and industry leaders.

Increasing expectations for good governance, effective risk management and complex demands for corporate compliance are presenting a growing challenge for organizations of all sizes. Join industry thought leaders as they provide you with practical advice on how to implement successful risk and compliance management strategies across your organization. Browse risk management resources in the form of interactive webinars and videos and ask questions of expert GRC professionals.

IT Governance, Risk and Compliance

The unexpected nature of natural disasters and other disruptive events means that preparation is key to managing disaster recovery and business continuity planning. Join the business continuity and disaster recovery community for live and recorded presentations discussing best practices for business continuity planning, disaster recovery programs and business continuity management. Learn from BCDR experts to develop your critical infrastructure and gain insight into tactical solutions to your BCDR issues.

Business Continuity / Disaster Recovery

Enterprise applications have become a crucial piece of infrastructure for many businesses. The enterprise applications community on BrightTALK features the latest insights in enterprise application integration, enterprise application architecture and EAS software. Join the community to gain access to thousands of videos and webinars presented by recognized enterprise information systems experts and arm yourself with the knowledge you need to succeed.

Enterprise Applications

As an IT professional, many of the problems you face are multifaceted, complex and don’t lend themselves to simple solutions. The information technology community features useful and free information technology resources. Join to browse thousands of videos and webinars on ITIL best practices, IT security strategy and more presented by leading CTOs, CIOs and other technology experts.

Information Technology

Get powerful emerging technology insights from influential experts. Connect with thought leaders and colleagues to get the most up-to-date knowledge on technologies like 3D printing, pervasive robotics, natural interfaces, connected everything and cognitive systems.

Emerging Technologies

The research and development community on BrightTALK brings together leading professionals in healthcare, technology and manufacturing to present on current topics in their fields. From big data in healthcare to online forensics training and medical research practices, the community is an exceptional resource for those looking to expand their knowledge. Be part of the conversation by joining the community and participating in interactive live webinars.

Research and Development

Internal audit and compliance professionals are facing increasingly stringent regulatory requirements when it comes to compliance reporting and internal control procedures. Join the audit and compliance community to learn best practices from thought leaders on topics such as regulatory compliance, internal audit checklists and audit program strategies.

Audit and Compliance

Join this new, vibrant community to learn and connect with top thought leaders, startups and banks who are disrupting the financial services industry. Keep up with the latest news and trends in Fintech and take part in lively debates on topical issues and challenges.

Fintech

The accounting and finance community on BrightTALK features presentations from leading accountants and finance professionals. The accounting community includes tax planning strategies, QuickBooks webinars and other accounting webinars, while the finance community features presentations on financial capital regulations and forensic data analytics. Join the conversation by attending live financial and accounting presentations and connecting with industry thought leaders.

Finance

Get powerful procurement and sourcing insights for your business. Connect with experts and colleagues to get the most up-to-date knowledge on which strategies are proving to be the most effective for managing vendors, improving performance and reducing cost.

Procurement and Sourcing

In the business management community, commercial experts will be sharing webinars and videos on an array of subjects. From sales and marketing, to finance, productivity and growth, this content will help you stay up-to-date with the current economic environment and provide timely management insight to drive business growth.

The Five Layers of a Mature GRC Program

Presented by

About this talk

More from this channel