Discover how a risk management framework helps companies identify, manage, and limit risks while balancing growth and protecting capital and earnings.

Situation Overview: Technology risks constantly evolve. Effective IT Risk Management Programs can identify, address and, as needed, adapt to emerging risks. This analysis illustrates how an effective ...

Talk to a chief information security officer, especially those charged with securing IT in financially strapped organizations such as state and local governments, and you'll hear them explain they're ...

The Committee of Sponsoring Organizations of the Treadway Commission released a long-awaited update Wednesday to its ERM Framework: Enterprise Risk Management–Integrating with Strategy and Performance ...

What is a risk management framework? Implementing the principles and guidelines of a risk management framework (RMF) is not just an effective way to manage current risks, it also provides a structured ...

Though distinct from the Cybersecurity Framework, the RMF helps agencies manage their cybersecurity risks and put in place the right controls. Phil Goldstein is a former web editor of the CDW family ...

"IT Risk Management disciplines have primarily focused on specific issues concerning security, disaster recovery and project-related risks. Many of the existing IT Risk Management tools are based on ...

Information & technology (IT) is a critical component in achieving an M&A strategy; without effective IT risk management, the value of the deal could be threatened or even eroded. IT risk management ...

Get the latest federal technology news delivered to your inbox. The need for effective cybersecurity in the federal government is more important now than ever before. Dr. Ron Ross, fellow at the ...

Changes that reflect the evolution of thinking and practices related to enterprise risk management (ERM) are among the most significant updates proposed to a new integrated framework devoted to ERM.

The Defense Department's plan to adopt NIST's risk management framework means that, for the first time, defense, intelligence and civilian federal agencies will use the same set of risk management ...