Blog tagged as riskmanagement

The ISO/IEC 27005:2022 provides a useful guidance on «risk management of the information security» for every kind of organization: read more on our blog!

The ISO 42001:2023 standard Annex A provides a series of objective controls and operational controls that organizations can apply to address risks related to AI systems.

The ISO 23894 standard provides us a guidance to manage AI-related risks on organizations that develop or use intelligence-base products, systems or services.

The ISO/IEC 23053 standard provides us a framework to better figure out artificial intelligence systems using Machine Learning: let's check it out.

Let's focus on ICT resources requirements for Italian finance industry set by Bank of Italy on Circular 285 with a GRC approach (and ISO related standards).

The FINMA set several ICT resources requirements for the Swiss finance industry: we can manage them with a GRC approach according to the related ISO standards.

Artificial Intelligence is getting day after day more important for a lot of human activities: AI can add a lot of value also on the adoption of a smart GRC model for our business.

Data protection between EU and Switzerland and the GRC Data Protection approach on GDPR and LPD-DSG-LPD (FDA): let's take a closer look at these laws together.

Data protection in Switzerland is regulated by the Swiss Federal Data Protection Act (DPA): the new law will enter into force on September 2023.