Gartner Blog Network

Category: 'grc' Blog Posts

from the Gartner Blog Network

New FFIEC Guidance on Social Media Risk Management Effective Immediately

by French Caldwell  |  December 13, 2013

The final guidance from the FFIEC on social media risk management for financial institutions has been promulgated.  It is effective immediately.  As I mentioned earlier this year, regulatory guidance of...

Read more »

GRC Will Be a Performance Platform

by French Caldwell  |  May 1, 2013

I just returned from the MetricStream GRC Summit in Las Vegas where I presented a keynote on risk management and performance.  The summit was very well planned, organized, and executed. ...

Read more »

Will IT GRC Begin to Die This Year?

by French Caldwell  |  January 3, 2013

I had a good discussion with Erik Heidt today about IT GRC management tools.  We were talking about why there is an IT GRCM market that is distinct from the...

Read more »

A Really Helpful Regulatory Change Tool

by French Caldwell  |  October 26, 2012

One of the questions I get all the time is, “Where can I find what regulations apply to me?”  I talked this morning to Fred Diers who has created GRMpedia...

Read more »

Oh, Michael -- Your Rant ....

by French Caldwell  |  October 10, 2012

[caption id="attachment_536" align="alignnone" width="336" caption="Analyst Having a Major Rant"][/caption] Dear Michael -- Good to hear from you.  Thanks for sending me your latest blog post.  I have to say though...

Read more »

Time to Stop Misusing SSAE 16 in Vendor Marketing

by French Caldwell  |  October 9, 2012

Some vendors and their auditors appear to be misusing SSAE 16 the same as they did SAS 70. For example, today I saw an announcement from security vendor Prolexic with...

Read more »

Global CEO Survey Reveals Regulatory Uncertainty and Operating Margin Challenges

by French Caldwell  |  March 22, 2012

Gartner conducted a global survey of CEOs and other senior executives concerning their business objectives, investment priorities and challenges. Some of the results related to risk management and compliance include:...

Read more »