Risk management and governance

With today's exponential advances in technology, CIOs, CTOs, CDOs and other IT leaders need critical advice on risk management and governance. Get news, guides and tips about technology-related compliance and data privacy issues, regulatory frameworks, limits on enterprise software development, cyber risk issues, metaverse dangers, cryptocurrency regulation and more.

Top Stories

News 01 Jun 2023
A look at 'risk of extinction from AI' statement

The statement equates the potential risk of human eradication from AI to that of nuclear war. However, some argue society should instead mitigate the existing risk of AI bias. Continue Reading
Feature 24 May 2023
What is the metaverse? An explanation and in-depth guide

The metaverse is described as the inevitable evolution of the internet. But what exactly is the metaverse, and what will it become? Learn what businesses need to know now. Continue Reading

News 18 Aug 2022

Talent acquisition a bigger business risk than recession

Talent acquisition and cybersecurity are the two top business risks leaders surveyed by PwC say they face in the current environment. Continue Reading
News 18 Aug 2022

MariaDB set to expand geospatial database capabilities

With the purchase of CubeWerx, the database vendor will add geospatial capabilities to its SkySQL database service that will enable satellite imagery analysis in applications. Continue Reading
Tip 18 Aug 2022

5 reasons to integrate ESG and cybersecurity

Every business faces global systemic risks, yet most have failed to integrate cybersecurity with ESG programs. Here are five reasons why integration makes good business sense. Continue Reading
Feature 11 Aug 2022

The effect of digital transformation on the CIO job

Digitization and digital transformation sound similar, but they couldn't be more different in what they demand from CIOs, explains Genpact's Sanjay Srivastava. Continue Reading
News 09 Aug 2022

IT pros weigh COVID-19 risks, safety at tech conferences

Companies preparing to send employees to tech conferences should have a COVID-19 safety plan and prepare for the possibility that some workers will bring the virus back to the office. Continue Reading
Tip 05 Aug 2022

5 data security challenges enterprises face today

Data empowers enterprises to succeed. But with great power comes great responsibility -- to keep that data secure. Here are five challenges today's businesses must meet. Continue Reading
News 04 Aug 2022

TikTok data privacy issues prompt need for social media plan

Data privacy concerns stemming from data collection practices of social media platforms means corporate leadership should be involved in determining a social media strategy. Continue Reading
News 27 Jul 2022

Regulation needed for AI, technology environmental impact

To implement effective government regulation of technologies like AI and cloud computing, more data on the technologies' environmental impacts is needed. Continue Reading
News 21 Jul 2022

Technology costs rise as inflation hits hardware, services

Inflation is affecting the CIO market basket, influencing purchasing. Government data showed a sharp increase in cost for servers, which continue to face supply chain issues. Continue Reading
News 07 Jul 2022

EU's new big tech regulations target online advertising

The Digital Markets Act and Digital Services Act focus on bolstering business competition and consumer control over data online. Continue Reading
News 06 Jul 2022

Lawmakers worry about biometric data in wake of Roe v. Wade

Protecting information such as biometric data has become even more important given the Supreme Court's recent decision to overturn Roe v. Wade, U.S. House members were told. Continue Reading
Feature 05 Jul 2022

How to define cyber-risk appetite as a security leader

In this excerpt from 'The CISO Evolution: Business Knowledge for Cybersecurity Executives,' learn how to define and communicate an enterprise's true cyber-risk appetite. Continue Reading
Feature 05 Jul 2022

A 'CISO evolution' means connecting business value to security

As cybersecurity has changed, so has the CISO role. 'The CISO Evolution: Business Knowledge for Cybersecurity Executives' aims to help security leaders succeed in the C-suite. Continue Reading
News 30 Jun 2022

Big tech regulation needs both privacy and antitrust reform

Privacy and antitrust laws work together, and if Congress wants to regulate the tech giants, it has to figure out how these laws work against each other. Continue Reading
Report 24 Jun 2022

The evolving CIO role: From IT operator to business strategist

This in-depth guide to the role of the CIO traces the job's evolution, explains what is required of the position today and why it has become so important to businesses. Continue Reading
News 23 Jun 2022

Microsoft reins in AI facial and voice recognition tech

The tech giant plans to rein in some of its AI technologies based on facial and voice recognition to reduce or eliminate bias and discrimination and aim for 'inclusive AI.' Continue Reading
News 22 Jun 2022

Senate bill a step forward for cryptocurrency regulation

A bipartisan cryptocurrency regulation bill gives the digital assets market much-needed definitions that will enable a regulatory framework to fall into place, experts say. Continue Reading
News 17 Jun 2022

Experts debate antitrust law enforcement benefits

Experts debate whether antitrust law enforcement should go beyond promoting competition and focus on other factors. Continue Reading
News 16 Jun 2022

U.S. senator highlights role of antitrust lawsuits, reform

During the American Antitrust Institute's annual conference, Sen. Richard Blumenthal spoke on the importance of antitrust law for reining in big tech. Continue Reading
Tip 14 Jun 2022

How to create a proof of concept with 6 free templates

What is a proof of concept and how does it help an organization? Here we dive into the importance of writing a POC and provide a list of free templates to help get you started. Continue Reading
News 10 Jun 2022

To secure supply chain, US needs semiconductor chip sites

To make U.S. semiconductor chip fabrication facilities successful long-term, experts say chip buyers such as Apple need to be included at the table during the planning process. Continue Reading
Tip 10 Jun 2022

15 tips for delivering a successful presentation to the board

What do you do when everyone thinks they're the smartest person in the room, and all of them are counting on you for answers? Here's how to give a presentation to the board. Continue Reading
Feature 10 Jun 2022

The push is on to build the autonomous enterprise

The concept of an autonomous enterprise is becoming more real as enterprises combine technologies to automate all kinds of human work. Welcome to the 'Autonomous Revolution.' Continue Reading
News 08 Jun 2022

Texas social media law brings content debate to Supreme Court

The Supreme Court recently blocked a Texas social media law that would have limited content removal, but that's likely not the end of the court's involvement on the issue. Continue Reading
Feature 03 Jun 2022

What is IT-business alignment and why is it important?

It's more important than ever that IT and the business operate from the same playbook. So why do so many organizations struggle to achieve IT-business alignment? Continue Reading
News 24 May 2022

MIT Sloan panelists urge cyber resilience focus

Enterprises must prepare for cyber-adversity, think beyond protection, establish lines of communication -- and learn to take a punch, according to security executives. Continue Reading
Tip 24 May 2022

CIO career path: How to become a CIO

The career path to becoming a CIO has evolved as the role has become increasingly critical to business success. Find out how to become a CIO and what the job entails. Continue Reading
Tip 20 May 2022

8 free IT strategic planning templates and examples for CIOs

As technology becomes a business differentiator, a well-thought-out IT strategy plan is more crucial than ever. These IT strategy templates help CIOs make IT a business driver. Continue Reading
News 20 May 2022

In wake of crash, cryptocurrency regulation focus heightens

The recent crash of TerraUSD, a stablecoin that is a type of cryptocurrency, could rouse further regulatory scrutiny. Continue Reading
News 19 May 2022

CEOs name environmental sustainability a top business focus

Businesses are increasingly focused on their environmental sustainability efforts, as investors, customers and regulators drive sustainability prioritization. Continue Reading
News 19 May 2022

DHS pauses newly created Disinformation Governance Board

Concerns about the spread of disinformation prompted DHS to create the Disinformation Governance Board, which was immediately met with criticism from Republican lawmakers. Continue Reading
News 17 May 2022

MIT-CIO event explores pandemic's effect on digital ecosystems

Allan Tate, executive chair of the MIT Sloan CIO Symposium, lays out the big idea of the 2022 conference and explains how the event itself reflects its relevance. Continue Reading
News 13 May 2022

Policymaker proposes commission to oversee digital platforms

The proposed Federal Digital Platform Commission would oversee tech giants and could impose penalties and conduct investigations into bad conduct. Not everyone thinks it will work. Continue Reading
News 13 May 2022

Roe v. Wade reversal could hinder data privacy rights

Tech companies could start feeling pressure from consumers to limit data collection should Roe v. Wade be overturned. Continue Reading
Tip 13 May 2022

CIO vs. CTO: Key differences in roles and responsibilities

CIOs and CTOs both play a valuable role in a company's technology strategy, but their focus and responsibilities are different. Learn more. Continue Reading
News 12 May 2022

MIT Sloan innovation startups pursue AI at scale

Modzy and Snowplow are among the early-stage companies aiming to move AI from science project to enterprise asset. Success will let businesses reap the benefits of the technology. Continue Reading
News 05 May 2022

CIOs need to balance tech with business sustainability

As CIOs consider new technologies to help reach business sustainability goals, investors also want to see the right governance in place when it comes to climate risk management. Continue Reading
Tip 29 Apr 2022

6 information governance best practices

An information governance plan ensures that an organization's content lifecycle meets compliance and business needs. Best practices can help organizations craft an effective plan. Continue Reading
News 27 Apr 2022

Elon Musk poised to disrupt social media industry

Elon Musk could disrupt the social media industry with his purchase of Twitter and move the company away from social media's traditional reliance on advertising revenue. Continue Reading
Tip 27 Apr 2022

9 top business process modeling techniques with examples

Business process modeling techniques and tools provide a visual representation critical to monitoring, improving and streamlining the flow of tasks along numerous processes. Continue Reading
Tip 27 Apr 2022

How to develop a business process in 8 steps

Well-designed business processes help organizations achieve their goals faster, but they require planning and effort. Follow these steps to develop processes that deliver value. Continue Reading
Tip 27 Apr 2022

6 top business process management benefits, advantages

Streamlined workflows, greater agility and scalability, tighter process controls, reduced risks, lower costs and better customer engagements are among the notable BPM benefits. Continue Reading
Tip 27 Apr 2022

16 BPM best practices to ensure project success

A BPM approach to transformation enables companies to continuously improve and reinvent their business processes, injecting innovation as they go. Learn how to do it right. Continue Reading
Tip 27 Apr 2022

RPA vs. BPM: How are they different?

Don't confuse RPA with BPM. These process-oriented initiatives are distinctly different yet highly complementary when planning, automating and improving key business operations. Continue Reading
Tip 27 Apr 2022

6 trends shaping the future of BPM

BPM is evolving quickly as advanced automation, integration with software platforms and democratized tools extend its reach. Read about the future of BPM. Continue Reading
Tip 27 Apr 2022

7 business process management challenges and how to fix them

On the road to a successful BPM initiative, missing C-level support, unclear goals, cultural change and poor testing environments are among the roadblocks that can be overcome. Continue Reading
Tip 27 Apr 2022

How to improve and optimize business processes, step by step

Hundreds of processes that form the lifeblood of business operations require constant monitoring, so the most vulnerable can be revitalized through a methodical series of actions. Continue Reading
Feature 27 Apr 2022

Bolstered BPMN standard is core of new BPM+ ecosystem

BPMN, now part of the expansive BPM+ ecosystem, has been updated with new capabilities to handle complex business processes and the use of advanced technologies. Continue Reading
News 22 Apr 2022

Digital humanism aims to balance human needs, emerging tech

Digital humanism is an approach to designing a digital future with human values and needs in mind, a concept arriving in response to the unchecked power of digital platforms. Continue Reading
News 15 Apr 2022

SEC chair touts benefits of climate risk disclosure rule

Interested parties are weighing in on the SEC's proposed climate risk disclosure rule, which is available for comment until May 20. Continue Reading
News 15 Apr 2022

Tech giants balk at competition bill, Digital Markets Act

The EU has already reached an agreement on their Digital Markets Act, which would open tech giants' tightly controlled app stores and platforms to third parties. Continue Reading
Feature 14 Apr 2022

Study attests: Cloud apps, remote users add to data loss

A study from ESG found many customers attribute data loss and compliance troubles to the race to put apps in the cloud and accommodate remote workers amid the pandemic. Continue Reading
News 07 Apr 2022

Long, costly road ahead for FTC antitrust case against Meta

The Federal Trade Commission's antitrust case against Meta is relying on the argument that past acquisitions helped Meta maintain its dominance in the social media market. Continue Reading
News 31 Mar 2022

Tech companies in Ukraine open economic front in Russian war

Developers and engineers serve as an economic bulwark in the country's battle for survival. The regional reshuffling of talent, meanwhile, could spell higher costs for IT buyers. Continue Reading
News 24 Mar 2022

SEC's proposed climate rule a game-changer for sustainability

Experts are praising the SEC's newly proposed climate risk disclosure rule, which would require businesses to bake climate risk into their overall risk management plans. Continue Reading
News 23 Mar 2022

Metaverse platforms offer opportunity and risk for CIOs

Accenture's recent Technology Vision event underscored the transformational possibilities of virtual worlds, but also pointed to security and safety challenges. Continue Reading
News 07 Mar 2022

US awaits bill boosting technology competition with China

China's investments in tech have spurred the U.S. to take action with a U.S. technology competition bill funneling billions into tech innovation and development. Continue Reading
News 04 Mar 2022

Russian sanctions prompt tech to stop sales, curb services

At the urging of Ukraine's Vice Prime Minister Mykhailo Fedorov and economic sanctions, companies including Apple, Google and Microsoft have limited business operations in Russia. Continue Reading
News 25 Feb 2022

Sanctions cost Russia US tech, and that may hurt

The U.S. has issued sanctions against Russia for its military invasion of Ukraine, which could face devastating IT service delivery disruption if the conflict continues. Continue Reading
News 16 Feb 2022

Proposal for federal tech policy focuses on privacy, security

The Future of Tech Commission wants the federal government to initiate a coordinated effort to address issues like data privacy and competition. Continue Reading
News 11 Feb 2022

House bill tracks foreign investment in U.S. mergers

The Foreign Merger Subsidy Disclosure Act would allow federal antitrust enforcement agencies to track foreign government investment behind U.S. business mergers. Continue Reading
News 08 Feb 2022

Federal regulatory efforts could affect VR, metaverse

Although Congress isn't looking to regulate VR or the metaverse yet, its efforts on antitrust and data privacy could have impacts down the road. Continue Reading
News 07 Feb 2022

IRS drops facial recognition plans after criticism

The agency said it will no longer require taxpayers to use a third-party website to authenticate identity and will develop its own tools to boost security and prevent fraud. Continue Reading
News 02 Feb 2022

Federal data privacy law efforts fizzle

As Congress shifts to antitrust enforcement, the momentum behind creating a federal data privacy law is waning. The states, meanwhile, are adopting privacy laws. Continue Reading
News 18 Jan 2022

FTC, DOJ seek public input on merger guidelines

The FTC and DOJ want public input on the government's merger guidelines, used to challenge potentially anticompetitive mergers. The agencies believe the rules are out of date and ineffective. Continue Reading
Tip 22 Dec 2021

Cybersecurity asset management takes ITAM to the next level

Security pros need to focus on cybersecurity asset management for devices, services and the vendors that can help. Use our checklist to find out how and where to start. Continue Reading
Tip 21 Dec 2021

Cybersecurity teamwork: C-suite roles CIOs should befriend

To strengthen organizational cybersecurity, CIOs must work closely with other leaders. Learn why it's important to loop in the CEO, CFO and chief human resources officer. Continue Reading
Tip 03 Dec 2021

Top 3 information security strategy essentials CIOs need

Cybersecurity is more important than ever before as hackers get more aggressive and vulnerabilities grow. Learn how to approach it in the right way and why getting alignment is so key. Continue Reading
Tip 19 Nov 2021

The CIO's role in strengthening information security

The CIO is critical for ensuring strong cybersecurity within the organization. Learn why the CIO's role inherently makes that difficult, and how to overcome obstacles. Continue Reading
News 27 Oct 2021

Senators push for more online child privacy protections

U.S. senators expressed frustration with social media giants for not supporting specific legislation enhancing child privacy protections online. Continue Reading
Tip 20 Oct 2021

14 potential costs of shadow IT

The use of unsanctioned software can cost enterprise -- a lot -- and not always in obvious ways. Here's a look at shadow IT costs CIOs should understand. Continue Reading
Feature 18 Oct 2021

Litigants face tough road with antitrust lawsuits

As big tech companies like Google and Facebook fight antitrust lawsuits in court, experts are divided on whether core antitrust laws need updating for the modern economy. Continue Reading
Tip 12 Oct 2021

How to evaluate and select GRC vendors and tools

There is a variety of governance, risk and compliance software on the market. Learn about some of the available products and how best to evaluate GRC tools and vendors. Continue Reading
Feature 12 Oct 2021

Top enterprise risk management certifications to consider

Certifications are essential to any career. Here are some enterprise risk management certifications for IT professionals. Continue Reading
Feature 12 Oct 2021

9 common risk management failures and how to avoid them

As enterprises rework their business models to meet the challenges ushered in by the pandemic, risks abound. Here are nine risk management failures to look out for. Continue Reading
Feature 12 Oct 2021

Traditional vs. enterprise risk management: How do they differ?

Traditional risk management and enterprise risk management are similar in their aim to mitigate risks that can harm a company. But there are important differences between the two. Continue Reading
Feature 12 Oct 2021

7 risk mitigation strategies to protect business operations

Enterprises facing a multitude of threats and vulnerabilities have several options to identify, manage and mitigate risks, including risk acceptance, avoidance and transference. Continue Reading
Feature 12 Oct 2021

4 basic types of business risks in the enterprise

As part of enterprise risk management, companies can mitigate many types of business risks by focusing on the underlying factors of people, processes, technologies and facilities. Continue Reading
Feature 12 Oct 2021

Implementing an enterprise risk management framework

A well-designed, all-inclusive ERM framework provides enterprises with a playbook to avert corporate disasters, generate competitive advantages and create business opportunities. Continue Reading
Feature 12 Oct 2021

Top 12 risk management skills and why you need them

Risk management is necessary at all levels of a business. Here are some skills needed to be a successful risk manager. Continue Reading
Feature 12 Oct 2021

Risk management process: What are the 5 steps?

While many organizations understand they must manage risk, implementing a risk management process is not always straightforward. Follow these five steps to ensure success. Continue Reading
Feature 12 Oct 2021

Risk appetite vs. risk tolerance: How are they different?

Risk appetite and risk tolerance are important risk terms that are related but not the same. Here's the difference, plus examples of risk appetite and risk tolerance statements. Continue Reading
Feature 12 Oct 2021

Enterprise risk management team: Roles and responsibilities

Every facet of an enterprise's operations is exposed to risk, requiring an all-encompassing risk management team composed of a diverse mix of corporate executives and managers. Continue Reading
Tip 07 Oct 2021

6 dangers of shadow IT and how to avoid them

When employees use unapproved devices and software, they create information security vulnerabilities. Here's a look at some of those risks and how IT can prevent them. Continue Reading
News 30 Sep 2021

Differing data privacy polices challenge EU, US tech council

The EU-U.S. Trade and Technology Council plans to develop standards, address supply chain issues and define approaches to data governance, but the road ahead could be a bumpy one. Continue Reading
Guest Post 11 Aug 2021

IoT legislation device manufacturers need to know about

To avoid penalties and meet government agency requirements, IoT device manufacturers must adhere to new standards and regulations. Learn the latest here. Continue Reading
News 06 Aug 2021

Amazon GDPR fine signals expansion of regulatory focus

Amazon's $887 million GDPR fine likely stems from consumer consent and may indicate the EU is moving beyond data breaches and zeroing in on data practices. Continue Reading
News 14 Jun 2021

Federal data privacy legislation could benefit U.S. economy

Data privacy laws are becoming part of a 'modern economy,' according to Google's Kate Charlet, director for data governance. Continue Reading
Feature 01 Jun 2021

Today's blockchain use cases and industry applications

Though far from a mature technology, blockchain is gaining prominence as a sound and highly secure method of conducting myriad transactions in multiple applications and industries. Continue Reading
Tip 24 May 2021

An adequacy audit checklist to assess project performance

Adequacy audits are conducted to assess the efficacy of IT system controls and identify areas for performance or other improvements. Use this audit checklist to get started. Continue Reading
Feature 15 Apr 2021

Managing cybersecurity during the pandemic and in the new digital age

Roota Almeida, CISO at Delta Dental of New Jersey and Delta Dental of Connecticut, talks about the cybersecurity threats she's seen over the last year and how she's effectively managing her security team. Continue Reading
News 25 Feb 2021

Texas power outage flags need to revisit business continuity

Freezing conditions that caused Texas power outages affected businesses well beyond the state's borders, prompting a need for business continuity plans to be revisited. Continue Reading
Feature 11 Feb 2021

Changes to U.S. antitrust laws could hamper innovation

Antitrust lawsuits and regulatory proposals could have a greater impact on the technology industry than regulators expect. Expert Aurelien Portuese explains why. Continue Reading
Tip 17 Dec 2020

Top cloud compliance standards and how to use them

Get guidance on how to select relevant cloud compliance standards, along with tips on evaluating third-party providers’ cloud compliance and governance efforts Continue Reading
Guest Post 16 Dec 2020

4 reasons to involve CISOs in mergers and acquisitions planning

As mergers and acquisitions go virtual due to COVID-19, the C-suite should include CISOs to help identify security risks, expedite cyber processes, review the new threat landscape and more. Continue Reading
News 10 Dec 2020

HHS proposes changes to HIPAA privacy rule

HHS wants to modify the HIPAA privacy rule to encourage better care coordination and make it easier for patients to access their health data. Continue Reading
Feature 24 Nov 2020

How does bureaucracy affect business? It's complicated

In his new book, 'The (Delicate) Art of Bureaucracy,' Mark Schwartz, enterprise strategist at AWS and former government bureaucrat, reveals how IT leaders can use bureaucracy to their advantage. Continue Reading
Tip 23 Nov 2020

How to conduct an IoT audit for compliance

To effectively prepare for and conduct an IoT audit, organizations need to understand which IT controls are in scope. Get actionable guidance on the audit process in this tip. Continue Reading
News 29 Oct 2020

Voting fraud technology could play role in momentous election

Vendors, academics and data scientists are developing technologies to detect irregularities in voting patterns. The turbulent U.S. election could provide fertile turf for the tools. Continue Reading
Guest Post 21 Oct 2020

Is your company's IT governance strategy cloud ready?

As companies prepare to migrate to the cloud, they need to review their IT governance strategy before making any decisions to ensure there won't be any issues later. Continue Reading