Risk management and governance

With today's exponential advances in technology, CIOs, CTOs, CDOs and other IT leaders need critical advice on risk management and governance. Get news, guides and tips about technology-related compliance and data privacy issues, regulatory frameworks, limits on enterprise software development, cyber risk issues, metaverse dangers, cryptocurrency regulation and more.

Top Stories

News 13 Aug 2024
What the Delta-Crowdstrike lawsuit may mean for IT contracts

The recent exchange of allegations between Delta and CrowdStrike reveals legal arguments Delta could use to recover the massive losses suffered in the CrowdStrike outage. Continue Reading
News 06 Aug 2024
Judge will face remedy challenge in Google antitrust case

Remedies in the Google online search antitrust case could include eliminating the company's use of distribution contracts that cemented Google as a default setting. Continue Reading

News 06 Aug 2024

Judge will face remedy challenge in Google antitrust case

Remedies in the Google online search antitrust case could include eliminating the company's use of distribution contracts that cemented Google as a default setting. Continue Reading
Podcast 05 Aug 2024

Examining the tech stances of Kamala Harris and Donald Trump

Harris has been close to the tech and AI community in her home state of California but is markedly more pro-regulation than Trump. The candidates are vying for tech and AI support. Continue Reading
News 01 Aug 2024

Warren slams legal challenges to FTC noncompete ban

As the FTC noncompete ban faces legal challenges, some in Congress including Sen. Elizabeth Warren are supporting the FTC's authority to create such a rule. Continue Reading
News 31 Jul 2024

U.S. top science chief says federal AI R&D spending lagging

While the U.S. spends billions on broader R&D efforts annually, the Office of Science and Technology Policy is advocating for increased funding for AI research. Continue Reading
Definition 31 Jul 2024

What is corporate social responsibility (CSR)?

Corporate social responsibility (CSR) is a strategy undertaken by companies to not just grow profits, but also to take an active and positive social role in the world around them. The term is also associated with the related term corporate citizenship. Continue Reading
News 25 Jul 2024

Split court decision on FTC noncompete ban adds uncertainty

While a Texas court preliminarily decided the FTC noncompete ban isn't enforceable, a Pennsylvania court decided it is, leaving businesses without a set direction. Continue Reading
Opinion 25 Jul 2024

CrowdStrike disaster exposes a hard truth about IT

Growing third-party dependencies mean more CrowdStrike-like disasters ahead. Preventing these requires a commitment to quality from vendors and robust backup plans from users. Continue Reading
News 24 Jul 2024

FTC seeks to shed light on 'surveillance pricing'

The Federal Trade Commission's study of surveillance pricing might lead to defining what kind of consumer data can be used to affect prices of products and services. Continue Reading
Feature 23 Jul 2024

The ultimate guide to cybersecurity planning for businesses

This in-depth cybersecurity planning guide provides information and advice to help organizations develop a successful strategy to protect their IT systems from attacks. Continue Reading
News 19 Jul 2024

South Korea, Taiwan, Japan monitor EU's Digital Markets Act

Countries including South Korea and Taiwan are taking a cautious approach to tech regulation and assessing the impact of existing laws like the EU's Digital Markets Act. Continue Reading
Definition 18 Jul 2024

What is data privacy?

Data privacy, also called information privacy, is an aspect of data protection that addresses the proper storage, access, retention, immutability and security of sensitive data. Continue Reading
News 15 Jul 2024

J.D. Vance is a Silicon Valley insider and tech policy critic

J.D. Vance's tech policy is likely to focus on bolstering competition with China while addressing perceived political biases amid big tech platforms like Google and Meta. Continue Reading
Feature 12 Jul 2024

Top enterprise risk management certifications to consider

Certifications are essential to many careers. Here are some useful enterprise risk management certifications for risk managers, IT professionals and other workers. Continue Reading
News 11 Jul 2024

Microsoft, Google make moves amid regulators' AI scrutiny

Microsoft is withdrawing stepping down from the OpenAI board. Google has reportedly disbanded its machine learning privacy team. Both vendors face investigations. Continue Reading
News 11 Jul 2024

FTC, DOJ take aim at dark patterns with Adobe lawsuit

The FTC and DOJ's lawsuit against Adobe targets dark patterns by claiming that Adobe's allegedly difficult cancellation process traps consumers in unwanted subscriptions. Continue Reading
News 10 Jul 2024

Kamala Harris might alter big tech regulation

Vice President Kamala Harris' friendliness toward the tech sector could affect President Joe Biden's regulatory efforts if she replaces him as the Democratic presidential nominee. Continue Reading
Tip 09 Jul 2024

7 machine learning challenges facing businesses

Machine learning challenges cover the spectrum from ethical and cybersecurity issues to data quality and user acceptance concerns. Read on to learn about seven common obstacles. Continue Reading
Feature 08 Jul 2024

How AI-driven SOC tech eased alert fatigue: Case study

Alert fatigue is real, and it can cause big problems in the SOC. Learn how generative AI can improve security outcomes and reduce analysts' frustration in this case study. Continue Reading
News 03 Jul 2024

EU moves ahead while U.S. steps back on regulation

The European Commission found both Meta and Apple to be in violation of the Digital Markets Act. Continue Reading
News 02 Jul 2024

Supreme Court rulings like Chevron hinder regulation

The Supreme Court's recent decisions including Chevron will limit federal agencies' regulatory power over businesses. Continue Reading
Definition 01 Jul 2024

product development (new product development)

Product development -- also called new product management -- is a series of steps that includes the conceptualization, design, development and marketing of newly created or rebranded goods and services. Continue Reading
News 27 Jun 2024

Data privacy legislation delayed as backlash grows

Multiple stakeholders raised issues with the American Privacy Rights Act, including removal of protections against algorithmic auditing. Continue Reading
Tip 26 Jun 2024

What qualifies as a material cybersecurity incident?

In SEC rules, a cyberincident's materiality hinges on its potential impact on a public company's standing. Learn what this means for cybersecurity disclosure requirements. Continue Reading
Tip 24 Jun 2024

Top cloud compliance standards and how to use them

Get guidance on how relevant cloud compliance standards are developed and tips on evaluating third-party providers' cloud compliance and governance efforts. Continue Reading
News 14 Jun 2024

Tensions rise over China's control of critical materials

While there is disagreement in Congress over how to diversify the critical materials supply chain, there is bipartisan agreement that China's dominance needs to be addressed. Continue Reading
Feature 14 Jun 2024

AI, copyright and fair use: What you need to know

As AI technology advances, U.S. and international copyright laws are struggling to keep pace, raising legal and ethical questions about ownership and AI-generated content. Continue Reading
Definition 14 Jun 2024

chief trust officer

A chief trust officer (CTrO) in the IT industry is an executive job title given to the person responsible for building confidence around the use of customer information. Continue Reading
Feature 12 Jun 2024

ESG vs. CSR vs. sustainability: What's the difference?

Environmental, social and governance and corporate social responsibility are related but different concepts that can be combined to boost corporate sustainability. Continue Reading
Feature 12 Jun 2024

ESG audit checklist: 6 steps for success

A thorough audit can rate corporate strategies on key environmental, social and governance metrics and ensure that ESG reporting meets accepted standards. Continue Reading
Definition 12 Jun 2024

data protection impact assessment (DPIA)

A data protection impact assessment (DPIA) is a process designed to help organizations determine how data processing systems, procedures or technologies affect individuals' privacy and eliminate any risks that might violate compliance. Continue Reading
News 07 Jun 2024

Businesses face growing patchwork of state AI laws

As U.S. states like Colorado pass their own AI laws, businesses will need to prepare compliance measures if they do business in those states. Continue Reading
Definition 07 Jun 2024

proof of concept (PoC) exploit

A proof of concept (PoC) exploit is a nonharmful attack against a computer or network. PoC exploits are not meant to cause harm, but to show security weaknesses within software. Continue Reading
News 04 Jun 2024

Vendors struggle to prevent GenAI use in child sexual abuse

Major large language model and image generation system vendors agree to work on limiting the ability of GenAI technology to create and spread child sexual abuse material. Continue Reading
News 23 May 2024

AI companies losing public trust in safety

Researchers find that more than half of Americans polled believe AI companies aren't considering ethics when developing the technology, and nearly 90% favor government regulations. Continue Reading
Definition 23 May 2024

Regulation SCI (Regulation Systems Compliance and Integrity)

Regulation SCI (Regulation Systems Compliance and Integrity) is a set of rules adopted by the U.S. Securities and Exchange Commission (SEC) to monitor the security and capabilities of U.S. securities markets' technology infrastructure. Continue Reading
Feature 22 May 2024

Biden, Trump show stark differences on tech policy

President Joe Biden and former President Donald Trump have taken different approaches to tech policies regarding climate, China and big tech. Continue Reading
News 22 May 2024

New IBM Watsonx GenAI focuses on enterprises, governance

The veteran tech giant, with deep roots in AI, bases its new AI strategy on open source, multimodel support and helping businesses modernize their code and IT operations. Continue Reading
Definition 17 May 2024

hashing

Hashing is the process of transforming any given key or a string of characters into another value. Continue Reading
News 16 May 2024

CIOs face obstacles when scaling generative AI

IT leaders can expect data issues, compliance hurdles and technology coordination chores when scaling generative AI. They must also find use cases with the best business value. Continue Reading
News 15 May 2024

Schumer's proposed AI policy roadmap blasted by critics

Sen. Chuck Schumer's AI policy roadmap wants $32 billion to boost AI innovation. It also prioritizes a federal data privacy framework and existing laws to govern AI. Continue Reading
Definition 15 May 2024

Common Vulnerability Scoring System (CVSS)

The Common Vulnerability Scoring System (CVSS) is a public framework for rating the severity and characteristics of security vulnerabilities in information systems. Continue Reading
News 14 May 2024

CIOs play a role in responding to cybersecurity regulations

CIOs will need to pay attention to cybersecurity regulations that often include multiple requirements for businesses to maintain safe and secure IT systems. Continue Reading
News 14 May 2024

Generative AI adoption outpacing all other forms of AI

A recent survey by the research and advisory firm found that deployment of generative artificial intelligence has exploded after barely being a consideration in the past. Continue Reading
News 10 May 2024

Data startups at MIT Sloan CIO event aim to fill tech gaps

Cleanlab, The Modern Data Company and Pyte seek to address data quality issues, metadata management and the perils of multiparty data collaboration, respectively. Continue Reading
News 09 May 2024

OpenAI deepfake detector 'belated but welcome'

The GenAI vendor's image-identifying tool has been warmly received, though some say it's belated, with elections around the world this year. The vendor also joined C2PA. Continue Reading
News 07 May 2024

OpenAI CEO Sam Altman weighs in on content authentication

OpenAI says it's working on new tools to identify content created by its generative AI tools, as Congress weighs legislation to protect individuals against AI-generated replicas. Continue Reading
News 01 May 2024

Deepfake AI regulation a tightrope walk for Congress

AI-generated content is in the crosshairs of Congress, federal enforcement agencies and the EU as concerns around digital replicas and individual intellectual property grow. Continue Reading
News 30 Apr 2024

Musicians balance compensation rights with GenAI innovation

While musicians have long used AI technology, GenAI is a new threat to their livelihoods. An effort has emerged to compensate artists whose work GenAI systems are trained on. Continue Reading
News 26 Apr 2024

Election might decide fate of FTC noncompetes ban

If the FTC's ban on noncompete agreements survives legal challenges, it might still face problems should there be an administration change following the 2024 presidential election. Continue Reading
Definition 25 Apr 2024

disaster recovery (DR)

Disaster recovery (DR) is an organization's ability to respond to and recover from an event that negatively affects business operations. Continue Reading
News 19 Apr 2024

Businesses need to prepare for SEC climate rules, EU's CSRD

While the SEC's new climate rules and the EU's CSRD are both facing delays, businesses still need to identify methods for collecting and assessing climate data. Continue Reading
Definition 18 Apr 2024

IT budget

IT budget is the amount of money spent on an organization's information technology systems and services. It includes compensation for IT professionals and expenses related to the construction and maintenance of enterprise-wide systems and services. Continue Reading
Feature 17 Apr 2024

Ally's generative AI strategy eyes multiple LLMs, AI agents

The digital bank plans to privately host multiple LLMs on its GenAI platform, explore autonomous agent technology and evaluate employee ideas for use cases. Continue Reading
News 17 Apr 2024

Lawmakers concerned about deepfake AI's election impact

Lawmakers want Congress to intervene and tackle AI manipulations that could affect U.S. elections. However, legislation has yet to advance to the House or Senate floor. Continue Reading
News 17 Apr 2024

Looking closer at Microsoft's investment in UAE AI vendor G42

The tech giant will own a minor stake, and G42's LLM will be on Azure. The move helps the cloud provider expand globally and helps the U.S. court the UAE away from China. Continue Reading
Definition 11 Apr 2024

change management

Change management is a systematic approach to dealing with the transition or transformation of an organization's goals, processes and technologies. Continue Reading
News 09 Apr 2024

States act on privacy laws as Congress considers new bill

The American Privacy Rights Act introduced this week aims to establish a national privacy standard that would preempt state privacy laws. Continue Reading
News 08 Apr 2024

CHIPS and Science Act funds TSMC, Intel projects

The Biden administration has awarded billions through the CHIPS and Science Act to five companies to invest in building and expanding chip facilities in the U.S. Continue Reading
Tip 08 Apr 2024

How to create a proof of concept with 6 free templates

What is a proof of concept and how does it help an organization? We dive into the importance of writing a PoC and provide a list of free template examples to help get you started. Continue Reading
News 05 Apr 2024

GDPR, EU AI Act will overlap as businesses face enforcement

Enforcement of the new EU AI Act remains up in the air as governing bodies are being established. Meanwhile, DPAs grapple with how new laws will interact with existing laws. Continue Reading
Definition 01 Apr 2024

double materiality

Double materiality extends the traditional accounting principle of materiality beyond financial information to include environmental, social and governance factors. Continue Reading
Tip 25 Mar 2024

Metaverse pros and cons: Top benefits and challenges

Lifelike experiences and new business opportunities are among the potential benefits of the still-developing metaverse. Drawbacks include privacy violations and addiction. Continue Reading
Definition 22 Mar 2024

chief financial officer (CFO)

A chief financial officer (CFO) is the corporate title for the person responsible for managing a company's financial operations and strategy. Continue Reading
Definition 22 Mar 2024

chief strategy officer (CSO)

A chief strategy officer (CSO) is a C-level executive charged with helping formulate, facilitate and communicate an organization's strategic initiatives and future goals. Continue Reading
Feature 22 Mar 2024

What is the metaverse? An explanation and in-depth guide

The metaverse reached the peak of hype and has been left for dead, but make no mistake, the technologies that will power this 3D internet are firing on all cylinders. Continue Reading
News 21 Mar 2024

DOJ sues Apple for monopolizing smartphone market

The DOJ is pursuing an antitrust case against Apple in a move the enforcement agency hopes will eventually spur competition in the smartphone market. Continue Reading
News 15 Mar 2024

U.S. TikTok ban, data broker bills target data practices

Congress is targeting companies' data practices through bills that limit data transfers and transactions to entities headquartered in countries of concern. Continue Reading
Definition 13 Mar 2024

information governance

Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and metrics that treat information as a valuable business asset. Continue Reading
Tip 13 Mar 2024

17 potential costs of shadow IT

Companies should be vigilant and consider the significant costs associated with shadow IT. Learn about these overlooked issues and how they affect the organization. Continue Reading
News 07 Mar 2024

DMA targets big tech platforms, furthers EU's data strategy

The EU's Digital Markets Act forces big tech companies to open their platforms to third parties and make data more accessible. Continue Reading
News 07 Mar 2024

Microsoft whistleblower, OpenAI, the NYT, and ethical AI

The vendor has filed a memorandum to dismiss some of the arguments The New York Times made in its copyright lawsuit. However, it now faces criticism from its own software engineer. Continue Reading
Feature 07 Mar 2024

Is the metaverse dead? Here's what happened and what's next

What happened to the metaverse? It's still here, even if the term no longer generates much enthusiasm, and finding useful applications across industries. Continue Reading
News 06 Mar 2024

SEC adopts climate risk disclosure rules

The SEC finalized climate risk disclosure rules to provide investors with consistent information about publicly filed businesses -- but the vote was not without controversy. Continue Reading
Definition 05 Mar 2024

Nvidia Omniverse

Nvidia Omniverse is a computing platform built to enhance digital design and development by integrating 3D design, spatial computing and physics-based workflows across Nvidia tools, third-party apps and AI services. Continue Reading
Definition 04 Mar 2024

cloud audit

A cloud audit is an assessment of a cloud computing environment and its services, based on a specific set of controls and best practices. Continue Reading
Tip 01 Mar 2024

The history of the metaverse explained (with timeline)

The term 'metaverse' has only recently gained currency, but its history is long. Learn about the technologies that gave rise to a concept many believe will change civilization. Continue Reading
Tip 01 Mar 2024

Metaverse vs. multiverse vs. omniverse: Key differences

Virtual realities are coming to a computer interface near you. Will you be joining a metaverse, multiverse or an enterprise-oriented version of the omniverse? Continue Reading
Feature 29 Feb 2024

The Metaverse Standards Forum: What you need to know

Creating an open and inclusive metaverse will require the development and adoption of interoperability standards. That's the tall order of the Metaverse Standards Forum. Continue Reading
News 29 Feb 2024

Collibra adds AI governance to data management platform

The data management vendor's new suite adds capabilities aimed at enabling enterprises to safely and securely use AI the same way data governance frameworks apply to data. Continue Reading
News 28 Feb 2024

Biden aims to protect data, calls for U.S. data privacy law

President Joe Biden is aiming to stop the sale of Americans' sensitive data to countries of concern, while also pushing for a U.S. data privacy law. Continue Reading
News 27 Feb 2024

US tech used in Russian weapons, despite export controls

U.S. export controls aren't keeping technology produced by Intel, AMD, Analog Devices and Texas Instruments from ending up in weapons systems used in Russia's invasion of Ukraine. Continue Reading
News 26 Feb 2024

Microsoft allies with OpenAI rival Mistral AI

The tech giant is investing in the open source startup. The partnership means Mistral's premium models, including its new model, Mistral Large, will be available on Azure. Continue Reading
News 26 Feb 2024

New merger guidelines, crackdown affect business strategies

The FTC and DOJ will be closely scrutinizing mergers and acquisitions heading into 2024 based on new merger guidelines released in December 2023. Continue Reading
Definition 26 Feb 2024

conflict-free replicated data type (CRDT)

A conflict-free replicated data type (CRDT) is a data structure that lets multiple people or applications make changes to the same piece of data. Continue Reading
News 26 Feb 2024

Podcast: 2024 the year of ROI for generative AI

Generative AI technologies are proliferating rapidly, but vendors and investors are looking to monetize AI models, a pivot from last year's innovative frenzy. Continue Reading
Tip 23 Feb 2024

4 virtual reality ethics issues that need to be addressed

Technology has outpaced societal guard rails throughout history. Virtual reality is no exception, introducing ethical and legal issues companies need to consider. Continue Reading
News 20 Feb 2024

Cloud costs continue to rise in 2024

Enterprises might look more closely at workload allocation and explore alternative platforms amid ongoing cloud price hikes. Storage costs are also trending upward. Continue Reading
Tip 15 Feb 2024

Top business process modeling techniques with examples

Business process modeling techniques and tools provide a visual representation of processes that's crucial to effectively monitoring, improving and streamlining the flow of tasks. Continue Reading
Definition 13 Feb 2024

Risk Management Framework (RMF)

The Risk Management Framework (RMF) is a template and guideline used by companies to identify, eliminate and minimize risks. Continue Reading
Tip 13 Feb 2024

How to develop a business process in 8 steps

Well-designed business processes help organizations achieve their goals faster, but they require planning and effort. Follow these steps to develop processes that deliver value. Continue Reading
Tip 13 Feb 2024

How to improve and optimize a business process, step by step

The processes that form the backbone of modern business operations require continuous improvement to stay effective and efficient. Here is a method for improving them. Continue Reading
News 12 Feb 2024

US works to develop AI standards while California legislates

California has proposed AI regulation as the U.S. works to develop AI standards by bringing together companies such as Apple, Amazon, Google and Microsoft. Continue Reading
News 12 Feb 2024

Businesses brace for FCC's ban on AI robocalls

The FCC's ban on AI-generated robocalls comes in response to growing concern about bad actors using AI to mimic someone's likeness and voice to spread misinformation. Continue Reading
Definition 12 Feb 2024

spatial computing

Spatial computing broadly characterizes the processes and tools used to capture, process and interact with three-dimensional (3D) data. Continue Reading
Tip 12 Feb 2024

Top metaverse cybersecurity challenges: How to address them

As the metaverse takes shape, companies must consider a slew of new cybersecurity challenges and how to deal with them. Continue Reading
Definition 09 Feb 2024

mobile security (wireless security)

Mobile security, also known as wireless security, refers to the measures taken to protect smartphones, tablets, laptops, smartwatches and other portable computing devices and the networks they connect to, from threats and vulnerabilities associated with wireless computing. Continue Reading
News 08 Feb 2024

Amazon weighs in on AI regulation

Amazon supports a risk-based approach to artificial intelligence regulation, which means focusing on regulating harmful uses of AI. Continue Reading
Tip 06 Feb 2024

8 dangers of shadow IT and how to manage them

Unauthorized devices, software and system changes -- and other forms of shadow IT -- can expose organizations to a range of security risks. Here are ways to manage them. Continue Reading
Feature 02 Feb 2024

AI, the 2024 U.S. election and the spread of disinformation

Generative technology-fueled deepfakes could interfere with the November election due to ease of use and power of the technology. The outlook for regulation seems dim. Continue Reading
Definition 31 Jan 2024

consumer data

Consumer data is the information that organizations collect from individuals who use internet-connected platforms, including websites, social media networks, mobile apps, text messaging apps or email systems. Continue Reading