March 19, 2019 11amPT / 2pm ET - Join us as Dave Schmoeller, Reciprocity’s Director of GRC, offers a handful of easy to implement best practices that will ensure that user access reviews are implemented successfully.
April 16th, 11am PT / 2pm ET - Want to learn how to leverage new and improved features in the latest ZenGRC release? Join us for a webinar to walk through enhancements designed to make your GRC activities easier.
Audits and risk assessments are a necessary cost of being in business. However, with the right tools and processes in place, your approach doesn’t have to be expensive, complicated, and time-consuming. Join our webinar session to learn how to : Build a new audit in minutes Use ZenGRC’s System of Record to run more efficient assessments Automate and streamline your tasks Send vendor risk assessments with a standardized and trackable Questionnaire Turn meaningful insights into actionable steps This webinar will be especially useful for you if you or your team are looking at tools to help streamline your GRC related processes.
Watch this on-demand session get the latest on the impact of the main updates to COBIT 2019 and how the new framework is different from COBIT 5.
Reciprocity partnered with Gatepoint Research to survey over 200 risk and compliance professionals about the challenges and opportunities risk and compliance professionals face in their organization. Join this webinar to see how your fellow colleagues identify where their organization could improve and get helpful tips for handling the answers you will get when you survey your own company with the same questions that we did.
Learn how ZenGRC's Continuous Monitoring solution provides compliance and risk management professionals with real-time visibility into their compliance and risk posture to proactively take actions to mitigate potential breaches.
Understand where your gaps are with being GDPR compliant, manage the workflow required to get and stay compliant with the GDPR, and tailor your audit process for the GDPR
Get best practices for purchasing and implementing a GRC software tool and get tips on how to leverage your tool for ongoing success.
Learn how to identify which vendors may leave you vulnerable to GDPR related fines.
Stop making it difficult for yourself. Watch this on-demand session to learn different ways to lower your burden of managing your GRC effort. We will provide you hands-on training, tips and tools for you to implement a GRC solution that is stress-free, so you have time to worry on more important business initiatives.
In an increasingly litigious society, you need technology that allows you to create business strategies based on these risks so that you protect your organization from the mistakes others make.
Under Article 5(2) organizations are expected to have comprehensive governance and accountability provisions in place. Demonstrating compliance with GDPR may seem challenging given the lack of formal audit controls to draw from. However, there are still things you can do today to satisfy key principles of the law once it goes into effect. Join us for this webinar to learn how to manage your data, assets, access rights, third-parties, and audit controls. Speakers will share insights on how to assess and prepare for GDPR compliance.
This paper explores several dimensions of Vendor Risk Management. First, why are vendor risks proliferating—why now, and where do they come from? Second, what steps are necessary to manage vendor risks? And third, how can CISOs and compliance officers implement those steps in a practical way, so you don’t spend all your time chasing vendors with risk management protocols?
Join Matt Kelly, Founder of popular blog RadicalCompliance and Lawrence Wilfred, Director of Product on this live webcast, as they share key insights to help you implement a simple solution that’ll get you up and running quickly.
Learn how to scope PCI-DSS requirements for your business.
Watch how we compare old assessments and evidence collection processes with ZenGRC’s way of performing assessments and collecting evidence. You’ll see very quickly why over 100 companies are feeling more at Zen with managing audits and risk assessments with ZenGRC.
Watch this ondemand session with Fastpath, Connor Group & Reciprocity to understand which technology solutions can better support your compliance needs and what the right mix of those options might be for you. You will also learn how to integrate these solutions into your audit and compliance programs to reduce the overhead and make room for value-add activities that can re-center infosec, audit and compliance in the strategy of organizations, large and small alike.
Watch this on demand session to understand the why, when and how of the purchasing process for GRC Tools
Too often, enterprises forget that their employees are working in challenging times need to know what to do and what not to do related to compliance — with the same clarity as other job responsibilities they shoulder. Attend this webinar to learn the following 5 steps to standing-up your compliance program.
Join Michael Rasmussen of GRC2020 and Aaron Kraus, Director of GRC Evangelism & Security at Reciprocity, as they discuss the importance of having a 3rd party risk plan that your entire company can get around.
Watch our Reciprocity GRC Experts tell stories of failed compliance efforts in this on-demand webinar.
It's the end of the year and you've been tasked with finding the right GRC solution before your PTO starts. How can you find and buy the right solution with your remaining budget?
Watch this on-demand webinar to learn strategies for setting up your GRC program for success and time saving tips to give you better visibility into your organization’s risk.
What are the signs that using spreadsheets to track your compliance program has become totally impractical? And how do you know when you’ve outgrown Excel? Watch our on-demand webinar now to find out.
Compliance programs are growing increasingly important, but how do you know when the time is right for your business to dive into compliance? This infographic illustrates the questions you should answer to determine if it is time for your organization to initiate a formal GRC program.
When companies first determine they need a formal compliance program, many are unclear if they need a compliance tool to manage it. Many companies turn to Microsoft Excel as the compliance tool of choice when first undertaking a GRC program. This eBook covers where Excel makes sense and how to know when your program has outgrown Excel.
Compliance is a process and you need to understand the right steps to take at the right time. This eBook provides a roadmap for understanding where you fit on the compliance spectrum, how to measure trade offs between growth and compliance, and practical tips for dealing with auditors as you move through the compliance process.
Compliance is complicated, and finding the right tool to fit your program’s needs at each given point in your GRC journey can be a daunting process. With that in mind, we’ve created this simple roadmap to guide you in the process of understanding how a compliance tool fits into your program and how it will evolve based on your changing needs.
Learn about Reciprocity’s ZenGRC offering and all the governance, risk, and compliance benefits ZenGRC can offer your organization.
Learn about ZenGRC's centralized registry of content for your organization’s governance, risk, and compliance (GRC) activities.
Struggling with GRC? It's Time to Take Charge. Learn how ZenGRC can help you solve your biggest compliance headaches.
Find out how to simplify your compliance program and maximize your return on investment with this eBook.
For tech services firms, compliance with data privacy and security rules is about transparency. The firm must be able to demonstrate its compliance capabilities to clients that want assurance they can rely on the firm. Typically corporations will try to gain that assurance by requesting a SOC 2 audit from the tech service provider; that audit assesses the design of a provider’s security controls and how well those controls perform.
Compliance with data privacy and security rules is no easy task for retailers. What’s more, the new PCI DSS 3.2 standard will push companies to demonstrate ongoing compliance with security standards, not simply to pass annual assessments every 12 months.
Firms handling medical data must ensure compliance with privacy and security rules from the moment a piece of PHI is created.
Providing information security and IT services to the government sector is one of the most complex and laborious processes facing big and small enterprises alike.
Media companies can encounter significant regulatory burdens as they go about the business of collecting data on customers and their behavior.
Hospitality businesses today live or die on preferred customer programs — so they also collect user IDs, passwords, and possibly location data. All of that data is subject to protection from multiple laws, that can reach across multiple jurisdictions.