Author: Erin Hardwick
-
The latest cyber shocks and impact every business leader needs to know
Read more: The latest cyber shocks and impact every business leader needs to knowOver the past year, cyber-attacks have stopped looking like technical failures and started behaving like prolonged business crises. Retailers, airlines, manufacturers, healthcare providers and media organizations have all been headline news for their cyber incidents. In many cases, the initial breach was only the beginning. We witnessed; operations were disrupted, supply chains stalled, customer services faltered and leadership teams were forced into crisis mode long after systems…
-
What a Head of Controls looks for in a GRC platform: A real-life case study and the common mistakes to avoid
Read more: What a Head of Controls looks for in a GRC platform: A real-life case study and the common mistakes to avoidAt CoreStream GRC, we recently wrapped up a successful GRC implementation with Wickes, and it highlighted something we see time and again. The difference between a smooth GRC rollout and a painful one is rarely about features alone. It usually comes down to a handful of early decisions. Small choices that either remove friction or…
-
Stop playing defense: The comprehensive guide to enterprise risk management for value-based GRC leaders
Read more: Stop playing defense: The comprehensive guide to enterprise risk management for value-based GRC leadersThe enterprise risk management wake-up call Enterprise risk management (ERM) has been talked about for years. Yet, in practice, many programs still amount to little more than documentation and reporting. While, they may look reassuring on paper, they are rarely tested when it matters. In our conversation with our expert community, we have seen that…
-
US AI risk regulation and compliance explained: what the fragmented legal landscape means for businesses
Read more: US AI risk regulation and compliance explained: what the fragmented legal landscape means for businessesFor teams who follow AI policy in the United States, the missing American equivalent to the EU AI Act is easy to misunderstand. Many readers assume this signals hesitation or a light touch approach. From a distance, the US model can appear unclear and even permissive. That view gets the story wrong. Regulation is already here, just…
-
UK to regulate crypto by 2027: What it means for global crypto and fintech firms
Read more: UK to regulate crypto by 2027: What it means for global crypto and fintech firmsThe UK’s decision marks the end of crypto’s regulatory grey zone. At CoreStream GRC, we’re seeing global crypto and fintech teams move from asking if regulation will land, to working out how to prepare for it in a way that does not slow the business down. In this piece our team at CoreStream GRC breaks…
-
What the team has learnt in 2025: 6 quick fixes for GRC
Read more: What the team has learnt in 2025: 6 quick fixes for GRC2025 has been a revealing year for Governance, Risk and Compliance teams. Across CoreStream GRC’s community events in London and New York, industry events like #RISK Europe, our design workshops and hundreds of conversations with clients and experts, one interesting theme kept surfacing. Many of the most common GRC challenges are not structural failures. They…
-
Why public sector teams choose CoreStream GRC for information asset management
Read more: Why public sector teams choose CoreStream GRC for information asset managementPublic sector organizations are under constant pressure to manage complex information environments and stay compliant with GDPR, the DSP Toolkit and internal information governance standards. A reliable information asset register is no longer a nice-to-have. It is the baseline for safe data processing, confident audits, and accountable governance. This is where CoreStream GRC stands out. Public sector teams choose…
-
What GRC leaders want in 2026: insights shaping the next chapter of CoreStream GRC
Read more: What GRC leaders want in 2026: insights shaping the next chapter of CoreStream GRCCoreStream GRC hosted community events, with industry risk and compliance leaders, in London and New York across a variety of sectors including retail, banking, technology and defense, to ask the key questions: “The best ideas come from the community. When we get everyone in a room, you see the value immediately, and we take that…
-
A practical guide to information asset management for public sector teams
Read more: A practical guide to information asset management for public sector teamsHow to understand, manage and secure public sector information assets with confidence. Public sector teams work in high-pressure information environments. Sensitive data sits across clinical systems, legacy tools, cloud services and spreadsheets. If you cannot see what you hold, why you hold it, or understand how it moves, you cannot meet GDPR or your governance…
-
Smarter GRC: CoreStream GRC integrates with Signal AI for proactive Risk Management
Read more: Smarter GRC: CoreStream GRC integrates with Signal AI for proactive Risk ManagementCoreStream GRC, the intuitive and flexible governance, risk and compliance platform built to work for enterprise teams, has announced a new integration with Signal AI, a leading global risk and reputation intelligence platform. This partnership connects the inside view of GRC with the outside world of emerging risk. By bringing internal control data and external intelligence…