Research methodology

We identified incidents from a range of publicly available sources (listed here), including reports to regulators, news reports, security researchers’ feeds, and press releases by breached organizations. We only recorded incidents where we have a reasonable degree of confidence that …

What Are 5 Top Cybersecurity Frameworks?

Many organizations must comply with a mixture of state-mandated, industry-specific, and international cybersecurity regulations. This includes, but isn’t limited to: These can be challenging to navigate, particularly if you also throw in privacy legislation like the CPRA (California Privacy Rights …

Privacy and Ethical Concerns Around AI

Risks of, and principles to guide, AI development Camden Woollven is GRC International Group’s (IT Governance USA’s parent company) head of AI. She’s responsible for identifying AI technologies that can improve the Group’s productivity and efficiency, and implementing them. As …