Americas

  • United States

Asia

Europe

Oceania

Popular Topics

Topics

About

Policies

Our Network

More

Compliance

Compliance | News, how-tos, features, reviews, and videos

Latest from today

Interview
Image

Vaillant CISO: NIS2 complexity and lack of clarity endanger its mission

Raphael Reiß, CISO at EU HVAC giant Vaillant Group, explains what cyber challenges his industry faces, including how to operate in a complex regulatory environment.

By Julia Mutzbauer
5 mins
ComplianceData and Information SecurityLaws and Regulations
How-To
Image

Empathetic policy engineering: The secret to better security behavior and awareness

By Heiko Roßnagel
7 mins
ComplianceIT Skills and TrainingSecurity
Opinion
Image

3 ways CISOs can win over their boards this budget season

By Chris Wheeler
7 mins
BudgetingComplianceRisk Management
Opinion

Beyond the checklist: Shifting from compliance frameworks to real-time risk assessments

By Greg Neville
7 mins
ComplianceRisk ManagementSecurity
News

Office sandbox file security to disappear from enterprise Windows by late 2027, Microsoft confirms

By John E. Dunn
4 mins
Anti MalwareComplianceSecurity Software
Feature

Coming AI regulations have IT leaders worried about hefty compliance fines

By Grant Gross
7 mins
ComplianceGovernmentLaws and Regulations
Opinion

Beyond the checklist: Building adaptive GRC frameworks for agentic AI

By Adetunji Adebayo
8 mins
ComplianceIT GovernanceRisk Management
News Analysis

Salesforce AI agents set to assist enterprises with security and compliance

By Maria Korolov
5 mins
Artificial IntelligenceComplianceSecurity
Feature

Is the CISO chair becoming a revolving door?

By Aimee Chanthadavong
8 mins
CSO and CISOCareersCompliance

Articles

feature

Pressure on CISOs to stay silent about security incidents growing

A recent survey found that 69% of CISOs have been told to keep quiet about breaches by their employers, up from 42% just two years ago.

By John Leyden
Sep 4, 2025 8 mins
CSO and CISOComplianceData Breach
news

Relief for European Commission as court upholds EU Data Privacy Framework agreement with US

Legal challenge by French MP rejected by the EU's General Court, but experts predict ruling will be appealed.

By John E. Dunn
Sep 3, 2025 5 mins
ComplianceLaws and RegulationsPrivacy
feature

How AI is changing the GRC strategy

CISOs find themselves at a pinch-point needing to manage AI risks while supporting organizational innovation. The way forward is adapting GRC frameworks.

By Rosalyn Page
Jul 17, 2025 11 mins
ComplianceIT GovernanceRisk Management
feature

7 obsolete security practices that should be terminated immediately

Bad habits can be hard to break. Yet when it comes to security, an outdated practice is not only useless, but potentially dangerous.

By John Edwards
Jul 16, 2025 7 mins
Access ControlComplianceIntrusion Detection Software
analysis

Third-party risk management: How to avoid compliance disaster

If third-party providers violate regulations, they expose their clients to a compliance risk. Third-party risk management (TPRM) is intended to help against this.

By Sabine Frömling
Jul 3, 2025 4 mins
ComplianceData BreachRisk Management
opinion

The rise of the compliance super soldier: A new human-AI paradigm in GRC

AI is reshaping GRC, demanding a new kind of archetype — forward-operating professionals who don't just manage governance; they engineer it.

By Nikhil Sarnot
Jun 27, 2025 9 mins
ComplianceGenerative AIIT Governance
news

IBM combines governance and security tools to solve the AI agent oversight crisis

With AI agents multiplying across enterprises, IBM’s watsonx–Guardium integration aims to provide unified AgentOps visibility, automated red teaming, and regulatory accelerators to future-proof compliance.

By Anirban Ghoshal
Jun 20, 2025 5 mins
Artificial IntelligenceComplianceSecurity
opinion

Security, risk and compliance in the world of AI agents

Why autonomy demands a rethink of governance models.

By Nikhil Sarnot
Jun 17, 2025 13 mins
Artificial IntelligenceComplianceIT Governance
opinion

Unmasking the silent saboteur you didn't know was running the show

If your system clocks are off, your entire cybersecurity stack is compromised. Time sync isn’t optional, it’s a critical security control.

By Maman Ibrahim
Jun 9, 2025 8 mins
Access ControlComplianceZero Trust
feature

How to establish an effective AI GRC framework

To get the most from artificial intelligence without falling prey to the risks, your company must implement a governance, risk, and compliance (GRC) framework specific to AI. Here’s how to develop a corporate policy that works.

By Bob Violino
May 16, 2025 10 mins
ComplianceIT GovernanceRisk Management
news

New data privacy act puts Indian companies on high alert

With the Digital Personal Data Protection Act set to become law soon, experts say there’s still a significant gap in awareness and implementation.

By Nidhi Singal
Apr 24, 2025 5 mins
CompliancePrivacySecurity
feature

CIOs and CISOs take on NIS2: Key challenges, security opportunities

Between complexity, bureaucracy, and costs, NIS2 compliance has been a challenging journey for many IT leaders — and one that isn’t over. The next phase? Leveraging NIS2 to achieve a higher security posture.

By Patrizia Licata
Mar 14, 2025 10 mins
ComplianceData and Information SecurityLaws and Regulations
View all

Resources

whitepaper

How Agentic AI is Revolutionizing Tax and Compliance

Analysts say the Agentic AI revolution is here. In this webcast from Avalara, experts from Avalara and IDC will explore a key use case for Agentic AI: Agentic Tax and Compliance.

The post How Agentic AI is Revolutionizing Tax and Compliance appeared first on Whitepaper Repository –.

By Avalara
25 Nov 2025
Business OperationsCompliance
Image
View all

Video on demand

video

Aligning security, compliance and privacy across inventory tracking

Brad Wells, Executive Director, Information Security, and Kandice Samuelson, Senior Director, IT Governance at PPD lead a team enhancing PPD’s inventory tracking system that identifies PPD’s most valuable assets. Join us to learn how they distribute security resources for appropriate levels of protection, maintain compliance with government regulations and industry standards, and leverage information security controls aligned with client requirements, industry frameworks and privacy regulations.

May 28, 2021 20 mins
ComplianceData and Information SecurityPrivacy
See all videos

Explore a topic

Show me more

opinion

Cybersecurity isn’t underfunded — It’s undermanaged

By JC Gaillard
7 mins
C-SuiteCSO and CISOIT Strategy
Image
how-to

How to justify your security investments

By Chritstoph Schuhwerk
6 mins
C-SuiteCSO and CISOIT Leadership
Image
news

Fortinet admins urged to update software to close FortiCloud SSO holes

By Howard Solomon
4 mins
Access ControlIdentity and Access ManagementSingle Sign-on
Image
podcast

CISO Reality: Record Pay, Rising Pressure, and Retention Risk

By Joan Goodchild
27 mins
CSO and CISOSecurity Infrastructure
Image
podcast

Inside Visa’s Cyber Defense: CISO Subra Kumaraswamy on blending AI and Human Defense

By Joan Goodchild
27 mins
Artificial IntelligenceCSO and CISOPhishing
Image
podcast

The Future of Cybersecurity Leadership: AI, Governance & Education | Kevin Powers, Boston College

23 mins
CyberattacksCybercrimeRisk Management
Image
video

CISO Reality: Record Pay, Rising Pressure, and Retention Risk

By Joan Goodchild
27 mins
CSO and CISOSecurity Infrastructure
Image
video

Inside Visa’s Cyber Defense: CISO Subra Kumaraswamy on blending AI and Human Defense

By Joan Goodchild
27 mins
Artificial IntelligenceCSO and CISOPhishing
Image
video

The Future of Cybersecurity Leadership: AI, Governance & Education | Kevin Powers, Boston College

23 mins
CyberattacksCybercrimeRisk Management
Image