Cloud 101CircleEventsBlog
Register for CSA’s free Virtual Cloud Trust Summit to tackle enterprise challenges in cloud assurance.

Publication Peer Review

Information Technology Governance, Risk, and Compliance in Healthcare v2
Information Technology Governance, Risk, and Compliance in Healthcare v2

Information Technology Governance, Risk, and Compliance in Healthcare v2

Open Until: 04/26/2024

Cloud GRC is an effective means for organizations to gather important risk data, validate compliance, and report results. One issue is cloud management, which is often implemented in silos across the organization. Failing to integrate the collective results into the GRC program can lead to a duplication of effort and not taking full advantage of GRC. A properly implemented GRC program can eliminate duplicate efforts, provide data repositories, and facilitate automation. This paper will discuss the elements of a good cloud GRC program and what is required to establish the program.


An area of GRC that is quickly increasing in importance is Artificial Intelligence (AI), particularly in healthcare. As a result, GRC is getting increased attention. AI GRC focuses on data quality, ethical and legal issues, security, and privacy. GRC aims to establish the necessary oversight to align AI behaviors with ethical standards and societal expectations and to safeguard against potential adverse impacts.

Contribute to Peer Review

Open Until: 04/26/2024