White papers, solution briefs & more
Warren Rainey shares the advantages and limitations of each notification type available in RSA Archer, and advice for configuring effective notifications.
Melissa Cohoe outlines three approaches that you can take to start shifting your BCM mindset: focus on outcomes, aim for understanding over precision, and shift to business-driven risk management.
Each chapter in this series explores a concept that we’ve seen to be critical to the success of any GRC deployment, whether you already have a GRC tool in place or you’re starting from scratch. Written by Kirk Hogan, Iceberg’s senior GRC consultant.
How do you build a team to properly sustain your GRC program? What skills should you be looking for? How should you develop your resources? Melissa Cohoe offers some pointers based on our work with Archer customers and our own Iceberg team.
In this document, Zhao Tian presents a role-based access control permission model for RSA Archer to allow for better security, reporting and user management.
The European Union General Data Protection Regulation (GDPR) will drive unprecedented changes in the way organizations handle personal data when it comes into effect in May 2018. To help organizations prepare, we’ve put together a resource page to help answer your questions.
To drive better business results from vulnerability management programs, companies need collaboration between IT and the business to share accountability for vulnerability management and the risk they impose on the business. Written by David White, a senior GRC consultant with Iceberg.
How a large North American financial institution used RSA Archer to centralize and automate their Application Risk Management process. They moved from spreadsheets to a centralized inventory of risk data, allowing for more confident, informed and effective decisions.
Companies partner with hundreds – or even thousands – of suppliers to deliver products and services. Every vendor, large or small, is a potential point of risk for the organization. Read how Iceberg helps organizations build strategic programs to deliver trusted, transparent and timely information on vendor risk, giving them the agility to make informed and effective business decisions.
Customer case studies
A project with a large California-based healthcare facility to make critical updates to their GRC solution and to mentor internal IT resources
Iceberg recently helped a large U.S. financial organization to centralize and automate Third Party Risk Management (TPRM) processes within a GRC solution.