GRC
-
Guide: What is an Internal Audit?
Learn what an internal audit is, why it matters and how to create an effective audit process to ensure compliance and improve management practices.
-
Guide: What is CMMC Compliance?
With three certification levels, the CMMC ensures that all DoD contractors meet stringent cybersecurity standards. Learn how to get CMMC-certified to be eligible for defense contracts that deliver services while safeguarding national security.
-
University of Kansas Health System TPRM Case Study
Onspring helps the University of Kansas Health System manage contracting, third-party risk, auditing, and other GRC activities
-
What is a Risk Assessment Matrix?
A risk assessment matrix helps you identify, prioritize, and tackle potential threats efficiently. Learn how this strategic tool can keep your projects on track and compliant ensuring success amidst uncertainties.
-
Avnet CMMC Management Case Study
Onspring CMMC Management helps Avnet centralize data collection, testing, and reporting for the DoD’s CMMC 2.0 assessments & certification.
-
3 Best Practices for Vendor Master Data Management
Learn best practices for ensuring data accuracy and establishing robust capture protocols to streamline vendor master data management.
-
How to Make the Move in Your GRC Program On-Demand Webinar
Thinking about a new GRC platform? This webinar will give you guidance on planning, acquiring and managing a new GRC platform.
-
DORA, The Explainer
With stringent requirements for ICT risk management and third-party oversight, the Digital Operational Resilience Act (DORA) ensures that financial entities are fortified against digital threats. Get up to speed on before the next deadline.
-
ATC – GRC Management Case Study
Using Onspring to centralize government, risk, and compliance data allows utility company ATC to make more efficient risk-based decisions.
-
How to Conduct an Effective Supply Chain Cybersecurity Risk Assessment
Your supply chain’s cybersecurity is only as strong as its weakest link. Conducting a cyber supply chain risk assessment helps you identify vulnerabilities. Learn how to map critical assets, assess threats and prioritize risks to ensure seamless operations and robust security.
-
Gartner GRC vs IRM: What’s in a Name?
GRC or IRM? Discover how these frameworks, while sharing similar goals, differ in their approach and focus. Find out which strategy aligns best with your organization’s needs for a robust governance and risk management system.
-
What is a Software Bill of Materials (SBOM)?
Think of a Software Bill of Materials (SBOM) as the ingredient list for your digital work, ensuring transparency and safeguarding against vulnerabilities. Learn how SBOMs can enhance compliance, streamline processes and fortify your software supply chain.
