Summary In summary, this article explains two regulations from the European Union, The Digital Operational Resilience Act (DORA) and NIS 2 Directive. DORA focuses on enhancing the digital resilience of financial entities, mandating robust risk management, system testing, and third-party…
Summary In summary, this article has the purpose to explain to the reader, the importance of Business Continuity Management (BCM) to ensure resilience. The article starts by explaining what a BCM is and the various concepts that it encompasses. With…
Summary This article emphasizes the critical role of Governance, Risk, and Compliance (GRC) practices in preventing data loss exfiltration, particularly in the face of evolving cyber threats like ransomware. It begins by highlighting the increasing sophistication of cybercriminals and the…
Introduction It is a truism, in software engineering, that developing software is hard. Developing secure systems is even harder, as shown by the evolution in the number of vulnerabilities in software systems. As the complexity of modern software increases, so…
Governance, Risk and Compliance (GRC) is a set of business management practices and policies that ensures regulatory compliance, risk management and effective governance in organisations. In the Software Development Life Cycle (SDLC), GRC is of utmost importance as it helps…