In this episode, Matt Davies sits down with Tom Cornelius from the SCF and Compliance Forge to dive into the world of risk assessments. Together, they explore the latest developments in risk assessment practices, how recent SEC changes have influenced risk management strategies, and introduce an innovative approach to transform the way you work.
In this episode, hear more about the following:
- Why risk assessment methods are often broken, with teams asking irrelevant questions and lacking executive management involvement.
- How the SEC has introduced changes that require publicly traded companies to have board oversight of cybersecurity threats and manage material risks.
- How the new approach to risk assessment aligns with the Secure Controls Framework (SCF) and focuses on aligning risk assessments with executive management, using control maturity, and providing situational awareness to business leaders.
- How to address key challenges by providing meaningful risk assessment results, speaking the language of the business, and ensuring the right people make risk decisions.
Matthew Davies Linkedin: https://www.linkedin.com/in/matthew-daviesgrc
Tom Cornelius Linkedin: https://www.linkedin.com/in/tcornelius
SureCloud Linkedin: https://www.linkedin.com/company/surecloud
What is GRC & Cyber Security Podcast?
Welcome to the GRC & Cybersecurity Podcast. On this podcast, you’ll find the latest strategies, advice, and tangible tactics to help you succeed in today’s risk estate. The content is a mix of interviews and fireside chats with CISOs and other GRC and Cybersecurity leaders, expert advice from Risk Management professionals, and the latest insights from our Cyber Threat Briefings. Produced by SureCloud, the provider of cloud based, Integrated GRC (Governance, Risk & Compliance) products and Cybersecurity services, which reinvent the way you manage risk.