Category

Policy

GRC, Policy, Risk

Risk Exception Management: Creating a Policy Exception Process

Navigating corporate policies can be tedious, especially when exceptions are needed. Discover how to balance policy adherence with real-world flexibility for risk exceptions while mitigating risks effectively.
Policy

5 Signs Your SLED Agency is Ready for Automated Policy Management

Discover the 5 signs your State, Local or Education agency is ready for automated policy management to streamline compliance and efficiency.
GRC, Policy

Guide: What is Policy Management?

What is policy management? Learn what it is, why it’s essential to GRC and how you can approach it to streamline compliance and improve organizational efficiency.
Internal Audit, Policy, Third-party / Vendor

University of Kansas Health System TPRM Case Study

Onspring helps the University of Kansas Health System manage contracting, third-party risk, auditing, and other GRC activities
CMMC, Policy

Avnet CMMC Management Case Study

Onspring CMMC Management helps Avnet centralize data collection, testing, and reporting for the DoD’s CMMC 2.0 assessments & certification.
GRC, Incident, Policy, Regulatory Change

DORA, The Explainer

With stringent requirements for ICT risk management and third-party oversight, the Digital Operational Resilience Act (DORA) ensures that financial entities are fortified against digital threats. Get up to speed on before the next deadline.
Compliance, GRC, Policy, Risk

Guide for Building an Internal Control Testing Program

This guide simplifies the creation of a robust internal control testing program, ensuring that your business remains secure and compliant. Learn how to effectively assess, test and document controls for optimal risk management.
GRC, Policy

4 Writing Tips for Annual GRC Updating

Now is the time to refresh your GRC policies and procedures for the coming year. As you begin to write these updates, here are four tips to help boost your writing skills for better drafts and more compelling corporate narratives in your business documents.
Compliance, GRC, HIPAA, Incident, Internal Audit, Policy, Risk, Third-party / Vendor

GRC Management for Healthcare Data Sheet

Learn how GRC for healthcare can help with your biggest threats and challenges, including third-party risk management which comprises almost a third of reportable HIPAA breaches.
ESG, GRC, Policy, Third-party / Vendor

Cybersecurity Insurance Policies Explained

Learn the essential elements of a cybersecurity insurance policy and what the implications are for information security experts.
Compliance, GRC, Internal Audit, Policy, Risk

Expanding Beyond Traditional Governance, Risk & Compliance

What started as a specific GRC initiative expanded into a robust process improvement program across multiple functions of the business.