Category

GRC

Risk

How to Conduct an Information Technology (IT) Risk Assessment

Learn about IT risk assessments, including how to identify vulnerabilities, enhance cybersecurity and develop effective mitigation strategies to protect your IT infrastructure from potential threats.
GRC, Risk

How to Create a Risk Register

Discover expert insights on how to build an effective risk register that keeps your team proactive and informed. This step-by-step guide will show you why maintaining a comprehensive risk register is worth the effort.
GRC

How a GRC Dashboard Can Transform Your Data

Discover how GRC dashboards can offer transparency and actionable intelligence by providing a comprehensive, real-time overview of governance, risk, and compliance activities.
Compliance, GDPR

A Quick GRC Guide to Retail Compliance Management in 2025

With AI, blockchain and evolving regulations reshaping the landscape, retail risk managers across sectors must stay agile and innovative in their compliance management this year. How well are you navigating these challenges?
GRC, Press & Media

AI’s Growing Footprint in Healthcare

Healthcare Business Today article: Managing third-party and compliance risks while HCOs are integrating AI models into their workflow.
Compliance, GRC, Internal Audit, Policy, Regulatory Change, Risk, SOX, Third-party / Vendor

3 Ways to Expand the Scope of Your GRC Strategy

Learn how organziations strategized and grew their GRC automations to enhance their overall governance, risk, and compliance efforts.
GRC, Risk

Guide: What is Risk Management?

What is Risk Management? It’s the detailed process of identifying potential threats and taking proactive steps to mitigate them. From market shifts to technological advancements, mature risk management can empower your business for long-term success.
HIPAA, Regulatory Change

Decoding the Latest HIPAA Security Rule Proposals for 2025

Get our take on updates in the new HIPAA Security Rule proposals aimed at enhancing cybersecurity in healthcare, including mandatory written policies, asset mapping, business resiliency and improved business associate management.
GRC, NIST, Risk

Guide: What is NIST RMF?

Learn about NIST RMF and how it helps you identify, assess and manage cybersecurity risks, including how it can safeguard data and streamline compliance.
GRC

How to Present KRIs Effectively to Your Board: A Coaching Guide

Presenting KRIs effectively to your board can transform risk management from a reactive chore into proactive leadership. This guide offers step-by-step insights on aligning KRIs with business strategies, leveraging technology, and using clear communication to make your data impactful and actionable.
GRC, Policy, Risk

Risk Exception Management: Creating a Policy Exception Process

Navigating corporate policies can be tedious, especially when exceptions are needed. Discover how to balance policy adherence with real-world flexibility for risk exceptions while mitigating risks effectively.
GRC, Third-party / Vendor

Dolby TPRM Case Study

Dolby Laboratories uses Onspring to automate third-party vendor management, risk assessment processes and other GRC workflows.