GRC News

March 19, 2021 -

How to Enhance GRC Program Collaboration

When it comes to Governance, Risk, and Compliance (GRC), understanding the integrated risk management responsibilities for each internal and

March 12, 2021 -

Understanding Your Risk Management Lifecycle

Risk by nature is an abstract concept. In order to better understand your risk management lifecycle, you must first

May 9, 2022 -

The Ultimate Guide to Thai PDPA Compliance

What is Thai PDPA Compliance? Thai PDPA compliance means data controllers and data processors that are covered by the

March 18, 2022 -

IT Risk Indicators Missing from Your Third-Party Management Program

The focus of a business’s third-party risk management (TPRM) program may look very different from one business unit to

March 4, 2022 -

‘Strengthening American Cybersecurity Act’ Passage Aimed at Cyber Defense Amid Geopolitical Conflict

New Cybersecurity Bill Aimed at Critical Infrastructure Defense The United States Senate has passed a legislative package – The

February 28, 2022 -

How to Build a Proactive IT & Security Framework

Refining your IT & security risk management strategy is an ongoing requirement at any stage of program maturity. Recent

February 16, 2022 -

How Does Your Privacy Framework Support Better Security Oversight? 

Security is a key pillar of any privacy program – meaning holistic security and privacy compliance is crucial to business

February 14, 2022 -

Political Unrest Fuels Agency’s Call for Cyber Resilience 

An increase in cyber-related incidents across the European Union has spurred several regulatory agencies to raise awareness around cyber

February 11, 2022 -

Ransomware Risk Management: The PCI Security Standards Council & National Cybersecurity Alliance’s Ransomware Bulletin 

The PCI Security Standards Council (PCI SSC) and National Cybersecurity Alliance published a bulletin in response to the rise

February 9, 2022 -

Trust & The CISO: The Role of Trust in the Evolution of IT & Security

Continual evolution is inevitable when it comes to the security landscape. In the modern IT & security sphere businesses

February 7, 2022 -

Get to Know: OneTrust’s Channel Chief Gordy Wyatt

We’re excited to announce that Gordy Wyatt, OneTrust’s North America Channel Director, has been named a 2022 Channel Chief

February 1, 2022 -

PrivacyConnect 2022 Chapter Meetings Announced

The PrivacyConnect 2022 meeting schedule is now live with 150 meetings across 100 global chapters including in-person, hybrid, and

January 27, 2022 -

The Importance of User-Driven Configuration for Flexible IT Risk Management and Privacy Compliance

Digital transformation is more than just the move from manual processes to the internet of things (IoT) technologies, it’s ongoing change management

January 25, 2022 -

The Shift to Third-Party Management (TPM): What is TPM and Why does it Matter?

Traditionally, the corporate vendor ecosystem – the community of third parties and vendors that a company shares information with

January 24, 2022 -

How OneTrust Uses OneTrust for Data Privacy

Highlighting Data Privacy Week, we’re taking the opportunity to acknowledge privacy as the cornerstone of trust, recognizing that it’s

December 30, 2021 -

A Year in Review: Key takeaways, Top Breaches & More 2021 Security Trends

2021 Top Breaches, Hacks, and Outages  From incidents in the oil and gas industry to successful ransomware defense in

December 20, 2021 -

The Future of TPRM: Third Party Risk Management Predictions for 2022

Third-Party Risk Management (TPRM) is the way that a company looks at vendor relationships and manages the risks that they

December 16, 2021 -

Build the Business Case: The Importance of Business Resilience and TPRM

Throughout the beginning of December, a major web service and retail provider (that now controls 33% of the cloud

December 14, 2021 -

Working With Vendors to Address the Apache Log4j 2 Library Vulnerability

There is a new critical vulnerability that impacts one of the most popular open-source Java logging libraries, Apache Log4j 2. The exploit has been identified as a

December 10, 2021 -

OneTrust: Being a Responsible Business and Building Trust

At some point we’ve all been told that nothing worth doing is easy, and being a responsible business when

December 9, 2021 -

NIS2: An EU-Wide Cybersecurity Strengthening and Resilience Solution

On December 3, the Council of the European Union (EU), announced that it had agreed on its general approach to the text

December 3, 2021 -

Privacy and IT Risk: How Secure Are Your Assets Securing Personal Data?

Why IT Risk is Essential to Privacy Excellence  Privacy and IT risk management professionals have untapped potential in bringing more value to

December 2, 2021 -

The CECO & Vendor Risk Management: Top Challenges & Biggest Opportunities

Complex regulations are accelerating the need for organizations to realign their business practices from top-to-bottom. The consequences for non-compliance

November 30, 2021 -

Why Is Everyone Talking About Trust? And Why the CISO Should Care

The Emergence of Trust  Trust initiatives are becoming an increasingly important agenda item for executives and boards. More companies

November 22, 2021 -

New Final Rule Issuance: Computer-Security Incident Notification Requirements for Banking Organizations and Service Providers

The Office of the Comptroller of the Currency (OCC), the Board of Governors of the Federal Reserve System (Board) and the Federal

November 12, 2021 -

Cybersecurity Maturity Model 2.0: New Strategic Implications from GRC to VRM 

The Cybersecurity Maturity Model Certification (CMMC) was published in January 2020 by the US Department of Defense. The model established a new method

November 1, 2021 -

Cyber Security Awareness Resource Hub

Welcome to the Cyber Security Awareness Resource Hub!  This page is your one-stop-shop for all things cyber security training

October 28, 2021 -

The CSO (Chief Sustainability Officer) & Vendor Risk Management: Top Challenges & Biggest Opportunities 

Maintaining a strong security posture is more important than ever, and that includes addressing all aspects of organizational cybersecurity from both

October 18, 2021 -

Educate, Empower, Enable: The Importance of Cybercentric Education 

As the technological landscape continues to evolve, digital risk management needs are growing. Increased compliance obligations, digital transformation, and the proliferation

October 11, 2021 -

Put a Hold on Hacks: Fight the Phish and Other Common and Emerging Cyberthreats 

Cybersecurity teams are facing larger and more sophisticated cybersecurity threats than ever before. In the last year, there has

October 4, 2021 -

Trust Talks: Actioning Trust-Based Cybersecurity from Individual to Enterprise 

In the face of increased ransomware and overall security incidents, weaving the fabric of trust throughout your organization is

September 27, 2021 -

Ransomware Risk Management: NIST Cybersecurity Framework

The evolution of the cyberattack landscape is continuously evolving, and professionals across industries agree that 2020 and 2021 have been critical

September 23, 2021 -

Explore What’s Coming at TrustWeek 2021

TrustWeek is back online this year to bring together OneTrust customers, partners, and industry professionals to explore the latest technology innovations,

September 22, 2021 -

OneTrust Named a Leader in GRC Platform Independent Research Report

Today we are excited to share that OneTrust has been named a leader in the just-released Forrester Wave™: Governance,

September 21, 2021 -

OneTrust Acquires Tugboat Logic

The GRC market is changing from a once reactive, overly complex, and segmented approach to risk.  Our customers are

September 16, 2021 -

OneTrust Recognized in 2021 Gartner® Magic QuadrantTM for IT Risk Management

We’re proud to announce that OneTrust has been recognized in the 2021 Gartner Magic Quadrant for IT Risk Management* for OneTrust GRC.    The annual

September 15, 2021 -

OneTrust Integrates with Box to Support Customers Automate Privacy Compliance

  Today, OneTrust announced an integration with Box to better support customers wanting to automate privacy, security, and compliance. By leveraging OneTrust DataDiscovery, Box customers can discover, classify, and govern data within Box. In addition to this, customers can easily

September 15, 2021 -

3 Reasons You Need to Be Part of TrustWeek

TrustWeek is bringing you an entirely new way to experience an online event. The virtual conference fatigue is real. That’s why

September 14, 2021 -

OneTrust Named a Leader in Four Fall 2021 G2 Grid® Reports

We’ve done it again! We’re excited to share that OneTrust has been identified as a LEADER in four Fall

September 13, 2021 -

OneTrust Crosses 500 Enterprise and SMB Customers in Brazil, Expands GRC and Data Discovery Capabilities

In just two short years, OneTrust’s presence in Brazil has grown immensely. Today, over 500 Brazil-based companies across sectors

September 9, 2021 -

What to Expect at TrustWeek 2021

TrustWeek is OneTrust’s annual user conference that brings together the global community of privacy, security, and data governance professionals

September 2, 2021 -

OneTrust Named a Leader for the Third Consecutive Year in the 2021 Gartner® Magic QuadrantTM for IT Vendor Risk Management Tools

For the third consecutive year, we are honored to announce that OneTrust is a leader and furthest in completeness

August 17, 2021 -

Security Questionnaire Guide: Streamline Your Answering Process to Save Time and Money 

According to a recent study by Deloitte, 70% of companies rate their dependency on vendors as moderate to high; and

August 12, 2021 -

The Accenture Ransomware Attack: A Use Case for Effective Risk Mitigation

Targeted ransomware attacks have reached new heights, with a 62% global attack spike and a 158% increase in North American attacks alone. As ransomware

August 10, 2021 -

ITRM 101: Understanding the Impact of IT Risk on Your Organization

Defining ITRM IT Risk Management (ITRM) is a form of risk mitigation commonly used in information technology (IT). Per the ISACA Risk IT Framework, ITRM is

July 23, 2021 -

DHS Pipeline Cybersecurity Requirements Update

In the last year alone, the number of successful, large-scale cyber-attacks has astronomically increased (62% in the last year, to be

July 20, 2021 -

The APEC CBPR Certification: What is it?

Key areas of focus for privacy management programs are shifting due to continual evolution in the privacy landscape. In turn,

July 19, 2021 -

Security, Compliance, and Privacy: Exploring the Critical Areas of Vendor Risk

In the wake of increased successful and high-profile attacks, ransomware incidents, and the newfound fragility of critical infrastructure systems, vendor risk management (VRM) is emerging as an undeniably

July 16, 2021 -

Reduce Your Risk: Supply Chain Attacks and the Rise of Ransomware

Organizations are at risk of an attack on one of their vendors that may impact their day-to-day operations. Citing a recent major

July 14, 2021 -

Germany Passes New Corporate Due Diligence Act

Germany’s parliament has passed a new corporate due diligence act. The “Act on Corporate Due Diligence in Supply Chains”

July 7, 2021 -

OneTrust Named the Leader in Third-Party Risk Management and IT Risk Management by Chartis Research

OneTrust is proud to share that our Third-Party Risk Management (TPRM) and IT Risk Management (ITRM) Solutions have been

July 2, 2021 -

How Good IT Asset and Risk Management Can Protect You from Ransomware

A recent surge in ransomware attacks against critical infrastructure suggests a trend in cybercrime for the year. Groups of bad actors

June 30, 2021 -

The CPO & Vendor Risk Management: Top Challenges & Biggest Opportunities

As the privacy landscape continues to evolve, key focus areas of privacy program management are shifting. A product of

June 29, 2021 -

OneTrust Wins Big at 2021 SIIA CODiE Awards

Recognized as Best Compliance Solution and Best Overall Business Technology Solution We’re excited to share that OneTrust has been

June 23, 2021 -

The CISO & Vendor Risk Management: Top Challenges & Biggest Opportunities

As security teams spent the last year adapting to rapid digital transformation, the quick expansion left them spread thin, exposing new vulnerabilities for bad actors

June 18, 2021 -

The Ultimate Guide to ESG Management & Factors

The Ultimate Guide to ESG Management So, you’ve decided that you want to make your organization – and the planet

June 15, 2021 -

China Data Security Law Passed

As digital transformation increases worldwide, cybersecurity teams across the globe are shifting their focus and prioritizing secure data procurement and processing practices. As the criticality of data processing (first highlighted in China in the 2016

June 14, 2021 -

Risk Management: Making Your Organization First Line Friendly

What does it mean to make your risk management program first line friendly? While risk management is critical to

June 3, 2021 -

New Wave of Ransomware Attacks Hits US Infrastructure 

A recent surge in ransomware attacks against critical infrastructure suggests a trend in cybercrime for the year. Groups of bad actors are targeting countries’ essential services (oil, food production, etc.) because

May 28, 2021 -

New DHS Pipeline Cybersecurity Requirements: What do they mean?

In the last year alone, the number of successful, large-scale cyber-attacks has astronomically increased (62% in the last year, to be

May 26, 2021 -

OneTrust Celebrates Five Years of Trust

  Five years ago, OneTrust was founded. Over the years, OneTrust has grown to become the technology platform of

May 14, 2021 -

President Biden’s Cybersecurity Executive Order: What will it mean for you?

On May 12, US President Joe Biden issued an executive order on cybersecurity seeking to improve the state of national cybersecurity

April 14, 2021 -

OneTrust Acquires Ethics and Compliance Leader Convercent

Last month we announced our definitive agreement to acquire ethics and compliance software leader Convercent. Today, we’re excited to

March 24, 2021 -

Real Data Intelligence: A balance between seeking data value and mitigating risk

What is real data intelligence? It spawns from the idea of data democratization, allowing stakeholders from across an organization access to data and removing the

March 8, 2021 -

Introducing DataConnect

Today, OneTrust announces the new DataConnect series which aims to bring together privacy, security, and governance professionals together to discuss data governance

February 23, 2021 -

Why Security Teams Need Data Discovery

In today’s increasingly data-driven world, organizations are characterized by the abundance of data and more importantly, the need to

February 22, 2021 -

Announcing All New 2021 GRC and Vendor Risk Management Chapter Meetings

OneTrust is excited to announce open registration for additional GRC and vendor risk community chapter meetings for 2021! The

January 6, 2021 -

Integrate Microsoft Word into the OneTrust GRC Policy Management Software

To help companies improve policy management processes, OneTrust GRC today announced our policy management software integration with Microsoft Word.

December 21, 2020 -

OneTrust Announces Series C Funding at a $5.3 Billion Valuation

Today we are proud to announce our $300 million Series C funding round at a valuation over $5 billion! In the

December 17, 2020 -

G2 Names OneTrust Leader in Data Privacy Management Report

OneTrust has been named a leader in G2’s Data Privacy Management report for Winter 2021! At OneTrust, our customers

November 20, 2020 -

The Artificial Intelligence Landscape

Artificial intelligence (AI) is quickly becoming one of the most critical areas of focus for both businesses and regulatory authorities. We integrate and interact

November 2, 2020 -

What is OneTrust GRC? A LinkedIn Live Recap

  Each week OneTrust hosts industry experts to discuss the latest privacy, security, data governance, and compliance updates, trends, and developments in

November 1, 2020 -

Last Chance to Register for PrivacyConnect 2020

OneTrust and the PrivacyConnect Chapter Chairs are closing out PrivacyConnect 2020 strong with tons of regional events across the

October 15, 2020 -

TrustWeek 2020: Main Conference Day 2 Recap

We’ve just wrapped up day two of TrustWeek 2020’s main conference. If you missed out on today’s sessions, don’t fret––this blog post

October 14, 2020 -

TrustWeek 2020: Main Conference Day 1 Recap 

TrustWeek is officially in full swing and we’re bringing you the latest and greatest that OneTrust has to offer. TrustWeek is bigger than ever with over

October 13, 2020 -

TrustWeek 2020 News Announced: Bringing You the Latest and Greatest from OneTrust

TrustWeek 2020 is starting off with huge news including new products and offerings from OneTrust. During the main conference

October 12, 2020 -

Why Should You and Your Team Attend TrustWeek?

TrustWeek2020 is here.With over 3,000 attendees, this is our biggest annual user conference yet. Happening October 12-16, we’re taking this year’s

October 6, 2020 -

OneTrust Named a Leader in Third-Party Risk Management Platforms Evaluation

Today we’re excited to share that OneTrust is named a LEADER in the just-released report, The Forrester Wave™: Third-Party

September 28, 2020 -

TrustWeek 2020 Agenda Released

For the first time, TrustWeek, OneTrust’s user conference will be free and virtual for privacy, security, and data governance

September 15, 2020 -

OneTrust Opens Registration for TrustWeek 2020 – Free & Virtual User Conference

OneTrust’s TrustWeek™ 2020 user conference is coming fast and open registration has just been announced. We’re taking this year’s conference online––so you can attend any sessions

September 10, 2020 -

OneTrust Recognized in Gartner 2020 Critical Capabilities for IT Vendor Risk Management Tools for Second Consecutive Year 

OneTrust today announced our Vendor Risk Management solution, powered by the Vendorpedia Third-Party Risk Exchange, was recognized for the second consecutive year in the 2020 Gartner Critical Capabilities for IT

September 2, 2020 -

OneTrust Announces the Return of PrivacyConnect Industry Expert Panels 

OneTrust recently expanded its PrivacyConnect Online series to over 200 events across 100 PrivacyConnect Chapters. The sector specific Industry Expert Panels return for the second half of the year with more, topical discussion on a range

August 27, 2020 -

OneTrust Named a Leader in the 2020 Gartner Magic Quadrant for IT Vendor Risk Management Tools

For the second consecutive year, we are honored to announce that OneTrust is a LEADER in the 2020 Gartner

August 12, 2020 -

Inc. 500: OneTrust Named America’s #1 Fastest-Growing Company

The Inc. 500 – the prestigious annual ranking of the nation’s fastest-growing companies – list is out. Thousands of companies apply. 5,000 make the cut, and only the

July 20, 2020 -

OneTrust Opens New Certification Program Dates

We have just hit over 5,000 professionals who have attended one of our 10 OneTrust Certification Program courses, from Assessments to

July 7, 2020 -

Launch Your CCPA and GDPR Compliance Programs with OneTrust Free Tools

Get started with your CCPA, GDPR, and global privacy law compliance program today! OneTrust launched new free tools to give you free access to the most widely used

June 4, 2020 -

OneTrust Launches Weekly Product Webinar Series

Today OneTrust launched a new, six-week series of product-focused webinars showcasing the latest and greatest from our suite of privacy, security,

May 28, 2020 -

OneTrust Adds Industry Expert Panels to PrivacyConnect

Privacy professionals together face many challenges – from complying with a patchwork of global privacy law complexities to responding

May 27, 2020 -

IDC Releases First Worldwide Data Privacy Management Software Market Shares Report

Leading IT market research and advisory firm IDC just released its first Market Share report for the Worldwide Data Privacy Management

May 12, 2020 -

PrivacyConnect Online Expanded to 100+ Cities Across the Globe

OneTrust is excited to announce additional dates for free PrivacyConnect Online events in 100+ cities around the world. Privacy,

May 6, 2020 -

Introducing OneTrust GRC’s Audit & Policy Management: Two New Tools to Support ISMS Programs

Navigating risk and upholding information security management system (ISMS) programs across an organization relies heavily on the ability to

April 23, 2020 -

Launching OneTrust DataDiscovery: AI-Driven Discovery and Classification

Data is everywhere and drives the economy, technology and apps around us. Data is also a core element to

April 2, 2020 -

Introducing OneTrust Athena: AI and Robotic Automation to Power Your Compliance Program

Say hello to the newest member of your team! OneTrust has launched an artificial intelligence and robotic automation engine,

March 17, 2020 -

OneTrust Launches Free Online Certifications and Virtual Health Checks to Strengthen Customer Community During Travel Restrictions

As COVID-19 travels across the globe, the daily lives of our customer community are impacted in many different ways.

February 20, 2020 -

OneTrust Series B Funding Brings Valuation to $2.7 Billion

Today OneTrust is excited to announce a $210M Series B funding round at a $2.7B valuation, led by Coatue

January 16, 2020 -

Integrated Risk Management vs. GRC

Comparing two schools of thought, Integrated Risk Management vs GRC. Governance Risk and Compliance (GRC) is a well-established practice,

December 19, 2019 -

Centralizing Your Risk Register

Consolidate information to deliver a complete view of your enterprise’s risk exposure. Many companies have a “centralized risk register”

November 27, 2019 -

CMDB Tools to Organize, Automate and Integrate Data

How OneTrust CMDB tools can provide a technology solution to your business process challenge Software and CMDB tools can

November 21, 2019 -

Legacy GRC Tools and Today’s Market Challenges  

Governance, Risk, and Compliance a Crash Course on Legacy GRC Tools and Today’s Market Challenges. Many GRC tools in

November 20, 2019 -

Adding Context to Your Integrated Risk Management Program

Integrated Risk Management, Contextualizing Data with an Intelligent Platform for Added Value to Your Everyday Business Functions. In the

November 19, 2019 -

CMDB Maintenance, Improving Collaboration and Efficiency 

Working across teams to eliminate redundancies and keep your CMDB accurate and up-to-date  Having a centralized up-to-date configuration maintenance database (CMDB), or an overall record of shared information across

November 12, 2019 -

OneTrust IT & Security Risk Management Software

If you work in the security field whether as a consultant, IT or Cyber Security professional, managing risks across

September 18, 2019 -

OneTrust Launches Governance, Risk, Compliance Solution

For years, OneTrust customers have used our solutions to help understand and manage governance, risk and compliance use cases

November 27, 2018 -

Manage Data Breach Response Efforts Across the Globe with OneTrust’s Incident Management Solution

As personal data-related incidents become more common and breach notification requirements vary across regions, privacy and security teams need a

August 24, 2018 -

In the Three Months Since the GDPR, OneTrust Continues to Add to Extensive Awards Roster

In the Three Months Since the GDPR, OneTrust Continues to Add to Extensive Awards Roster It’s only been a

August 7, 2018 -

Last Week In Privacy- August 7, 2018

Last Week In Privacy- August 7, 2018 Welcome to “Last Week in Privacy!” Each week, OneTrust’s in-house privacy experts

June 21, 2017 -

OneTrust Featured in Ovum’s On The Radar Report

OneTrust Featured in Ovum’s On The Radar Report Download Ovum’s On The Radar Report about OneTrust here. Introduction New legislative instruments

April 19, 2017 -

OneTrust Joins RSA® Ready Technology Partner Program to Offer Organizations Globally a Streamlined Privacy Management Solution 

OneTrust Joins RSA® Ready Technology Partner Program to Offer Organizations Globally a Streamlined Privacy Management Solution OneTrustis excited to be

Onetrust All Rights Reserved