Currently, SimpleRisk supports six different risk scoring methods. We have Classic Risk, which is the likelihood ...
BLOG
Original SimpleRisk content to help you be successful with your Governance, Risk Management and Compliance program.
How to Perform Risk Assessments (with SimpleRisk)
This is just a short (1 minute) animated video explaining some of the capabilities around performing internal and ...
How to Manage the Evolving Risk of Bluekeep (with SimpleRisk)
Unless you've been hiding under a rock for the past three weeks, you're probably familiar with CVE-2019-0708, also ...
Assessing Vendor Security Risks (with SimpleRisk)
As a CISO for a large enterprise, many times my first engagement with members of our internal teams was when ...
Quickly Customize Your Risk Management Program (using SimpleRisk.com)
When I first released SimpleRisk as a free and open source risk management tool at the BSides Austin conference...
How to Use Standards to Assess Your Organization's Cybersecurity Maturity (by SimpleRisk)
On March 29, 2019, Alex Polimeni and I presented at the BSides Austin conference on some of the work we've ...
GRC is Dead, Long Live GRC!
Recently, a friend sent me a blog post by John A. Wheeler of Gartner entitled "What Ever Happened to GRC?". In ...
Should Vulnerabilities and Risks be Managed in the Same Place?
While the distinctions between vulnerabilities versus risks has been widely documented in various forums, we ...
Pricing Integrity and Why We Won't Play the Pricing Games
Before starting SimpleRisk, I sat in the CISO chair, on the other side of the negotiating table. I learned the tricks ...
