Zero Defect Digest

Get the latest articles, reports and guidance on IT Operations, operational resilience, compliance and more

Subscribe

When Penalties Extend Beyond the Balance Sheet
When Penalties Extend Beyond the Balance Sheet

The Optus outage demonstrates that the severity of risk is determined less by the nature of a technical flaw and more by the operational context in which it occurs. While the 2022 cyberattack and 2023 non-security outage both drew regulatory scrutiny, the 2025 disruption of Australia’s emergency services underscores that non-security defects can be just as consequential as malicious incidents. The lesson for leaders is clear: resilience planning and IT risk management must address all third-party software defects, as even routine “technical issues” can escalate into catastrophic outcomes. This reality drives BugZero’s mission to provide enterprises with the visibility and tools to proactively manage these risks.

Eric DeGrass

Eric DeGrass

September 24th, 2025

Why Machine-Readable Vendor Logs Change the Game (and Why You Cannot Wait)
IT Risk ManagementNIST SP 800-53Operational Defect DatabaseRegulatory ComplianceThird-Party Software Bugs
Why Machine-Readable Vendor Logs Change the Game (and Why You Cannot Wait)
Eric DeGrass

Eric DeGrass

September 16th, 2025

NIST just made this perfectly clear: Vendor Bugs Are An Enterprises’ Responsibility
IT Risk ManagementNIST SP 800-53Operational Defect DatabaseRegulatory ComplianceThird-Party Software Bugs
NIST just made this perfectly clear: Vendor Bugs Are An Enterprises’ Responsibility
Eric DeGrass

Eric DeGrass

September 16th, 2025

For Justice to be blind, Risk management needs 20/20 vision: The Full Cost of the HMCTS IT Bug Cover-Up
Governance, Risk and Compliance (GRC) IT Service Management (ITSM)Risk Ratings
For Justice to be blind, Risk management needs 20/20 vision: The Full Cost of the HMCTS IT Bug Cover-Up
Eric DeGrass

Eric DeGrass

August 19th, 2025

Beyond Recovery: The Strategic Imperative of Proactive IT Risk Management for Operational Resilience
Digital Operational Resilience Act (DORA)Governance, Risk and Compliance (GRC)Operational ResilienceProactive Risk Management
Beyond Recovery: The Strategic Imperative of Proactive IT Risk Management for Operational Resilience
Eric DeGrass

Eric DeGrass

July 21st, 2025

The Regulatory Lens Sharpens: Why Telecoms Must Heed the Call for Operational Resilience
DRCFOperational ResilienceTelecommunicationsUK Regulatory Compliance
The Regulatory Lens Sharpens: Why Telecoms Must Heed the Call for Operational Resilience
Eric DeGrass

Eric DeGrass

July 15th, 2025

UK Leadership in Pro-Growth Regulation
Digital Operational Resilience Act (DORA)Governance, Risk and Compliance (GRC) IT Service Management (ITSM)Operational Resilience
UK Leadership in Pro-Growth Regulation
Eric DeGrass

Eric DeGrass

June 3rd, 2025

FSB’s FIRE: A New Standard for Operational Incident Reporting (and How BugZero Helps)
FSB’s FIRE: A New Standard for Operational Incident Reporting (and How BugZero Helps)
Eric DeGrass

Eric DeGrass

May 14th, 2025

Sometimes the Simple Choices are the Best
Sometimes the Simple Choices are the Best
Gary Harrison

Gary Harrison

March 13th, 2025

The DRCF’s Cross-Regulatory Approach to Operational Resilience: A Model for the Future
FSA complianceOfcom ComplianceOperational ResilienceUK Regulatory Changes
The DRCF’s Cross-Regulatory Approach to Operational Resilience: A Model for the Future
Eric DeGrass

Eric DeGrass

March 13th, 2025

Ready to prevent the next vendor outage?

Get a demo