‘Compliance isn’t security’: 5 keys to a better approach

To reassure themselves and their stakeholders that they are properly responding to cybersecurity threats, many organizations rely on audits that demonstrate they’re adhering to compliance mandates and therefore addressing such risks. Indeed, a study by IDG found that 66% of organizations say spending on security is driven by those rules and regulations. Unfortunately, cyber threats usually outpace regulatory requirements, so compliance alone does not guarantee security.

“No matter how many times security pros say ‘compliance isn’t security,’ there are auditors and regulators who think it is,” Pete Lindstrom, VP of Security Strategies at research firm IDC, was quoted as saying in the IDG report.

Drumz plc (LON:DRUM) is an investing company whose policy is to invest principally but not exclusively in the technology sector within Europe. On 4 September 2020, Drumz made an investment in Acuity Risk Management Ltd, which operates an award winning software business specialising in risk management. 

Click to view all articles for the EPIC:
Or click to view the full company profile:
Facebook
Twitter
LinkedIn

More articles like this

Managing risk in the extended enterprise

Today’s organization is not defined by brick and mortar walls and traditional employees. The modern organization is an extended web of relationships: vendors, suppliers, outsourcers, service providers, contractors, and more. Consequently, managing enterprise risk requires insight

Comprehensive risk management

Why STREAM? Through centralization and automation of risk management and compliance, STREAM eliminates guesswork, reduces manual processes, communicates risk in business terms and builds stakeholder confidence. The Acuity team has deep expertise and experience with risk

STREAM Integrated Risk Manager review

Michael Rasmussen is an internationally recognized pundit on governance, risk management, and compliance (GRC) – with specific expertise on the topics of enterprise GRC, GRC technology, corporate compliance, and policy management.  With 27+ years of experience,

Managing CISO risk overload

Cybersecurity has been complicated by a remote workforce and accelerated digital transformation. Chief Information Security Officers need help managing an ever-growing array of risks to their enterprises. Cybersecurity has been complicated by a remote workforce and

Carl Zeiss AG case study

Founded in 1846, Carl Zeiss AG is an international front-runner in theworld of optics and optoelectronics. Since its founding, the companyhas successfully expanded worldwide, resulting in its presence in over 40countries, with over 30 production sites,

The future of GRC STREAM in action

Drumz plc (LON:DRUM) is an investing company whose policy is to invest principally but not exclusively in the technology sector within Europe. On 4 September 2020, Drumz made an investment in Acuity Risk Management Ltd, which operates

Drumz “looking forward to the future with optimism”

Drumz plc (LON:DRUM) the investing company focused on building value in technology, has announced its final results for the year ended 31 December 2020.   Highlights  In the year the Company changed its investing policy to focus

LanguageLine Solutions UK success story

LanguageLine Solutions UK has been providing interpretation, translation, and localization services for over 35 years. They are a trusted supplier to a wide range of public and private sector organizations, in the UK and across the

Managing risk in the extended enterprise

Drumz plc (LON:DRUM) is an investing company whose policy is to invest principally but not exclusively in the technology sector within Europe. On 4 September 2020, Drumz made an investment in Acuity Risk Management Ltd, which operates

Acuity Risk Management overview

Drumz plc (LON:DRUM) is an investing company whose policy is to invest principally but not exclusively in the technology sector within Europe. On 4 September 2020, Drumz made an investment in Acuity Risk Management Ltd, which operates

The future of GRC: STREAM in action

A new era of GRC is upon us and there are a number of key themes that will define Enterprise, Operational and Cyber risk management going forward, including: • Increasing complexity and dependencies across the entire

Controls assurance & compliance

Organizations need to know that their risks are being mitigated effectively so controls assurance allows them to check the adequacy of their risk treatment plans. Regularly assessing the implementation and effectiveness of controls will ensure that

The future of GRC STREAM in action

Drumz plc (LON:DRUM) is an investing company whose policy is to invest principally but not exclusively in the technology sector within Europe. On 4 September 2020, Drumz made an investment in Acuity Risk Management Ltd, which operates

STREAM Solutions Perspective

Michael Rasmussen is an internationally recognized pundit on governance, risk management, and compliance (GRC) – with specific expertise on the topics of enterprise GRC, GRC technology, corporate compliance, and policy management.  With 27+ years of experience,