GRC Report Staff

The U.S. Securities and Exchange Commission (SEC) has kicked off its biennial effort to collect self-assessments on diversity policies and practices from regulated entities.

A Federal Court in Australia has ruled that Active Super, a $13.5 billion (AUD) superannuation fund, made misleading representations about its environmental, social, and governance (ESG) credentials and investments.

The European Supervisory Authorities (ESAs) and the European Union Agency for Cybersecurity (ENISA) have signed a multilateral Memorandum of Understanding (MoU). This agreement formalizes ongoing discussions and sets the framework for strengthened cooperation and information exchange between the agencies.

The Office of the Australian Information Commissioner (OAIC) has filed civil penalty proceedings against Medibank Private Limited in the Federal Court, alleging serious privacy breaches related to the health insurer's massive data breach in October 2022.

Snowflake, a cloud data platform company, has refuted claims that it was responsible for the recent data breach affecting over 500 million Ticketmaster users. This comes after Ticketmaster initially suggested that a security weakness in a third-party cloud database environment was the cause of the breach.

Australia's corporate watchdog has outlined three fundamental principles – transparency, accountability, and consistency – as the cornerstone for better compliance by listed entities in an evolving regulatory environment.

In today's rapidly evolving business environment, organizations face an increasingly complex and dynamic risk landscape. Traditional approaches to risk management, which focus on identifying and implementing controls for known risks, are no longer sufficient. Risks are constantly changing and adapting, requiring a level of vigilance and agility that many organizations struggle to achieve.