In today’s rapidly evolving regulatory landscape, organizations face an increasingly complex and dynamic environment where managing compliance obligations demands agility, efficiency, effectiveness, resilience, and innovation. At the intersection of technology… Continue reading Navigating the RegTech Universe: Charting a Path Through a Maze of Offerings

In my previous post, The Death of the CISO: A Eulogy & Reincarnation, I argued that the traditional role of the Chief Information Security Officer (CISO) is evolving—or rather, undergoing a… Continue reading Rise of the Digital Trust & Resilience Officer: Death of the CISO, Part 2

Regulatory frameworks define how businesses operate, innovate, and ensure compliance in different jurisdictions. When comparing the regulatory landscapes of the European Union (EU) and the United States (US), a stark… Continue reading The Regulatory Divide: How EU and US Approaches Shape Business Strategy

Too many Governance, Risk Management, and Compliance (GRC) programs are fundamentally backward. Instead of starting with objectives, they focus on compliance checklists or risk registers, often relegating objectives to an… Continue reading GRC Starts with Objectives, Not Risk and Compliance

Environmental, Social, and Governance (ESG) is a growing challenge for organizations to manage and report on. It has become a core part of corporate strategy, driven by values, stakeholder expectations,… Continue reading ES-G-RC: How GRC is the Foundation for ESG and EU CSRD Reporting

While the USA is going in different directions, and the EU considers streamlining and integrating requirements later this month, the global landscape of Environmental, Social, and Governance (ESG) reporting has… Continue reading The Challenges of ESG Reporting: Navigating the Complexity of EU CSRD

What an exhilarating few weeks! My recent travels have taken me across the Middle East, London, Utrecht, and Stockholm, engaging with organizations and professionals across the governance, risk management, and… Continue reading Navigating Provision 29 of the UK Corporate Governance Code: Challenges and Insights

Driving a car is a perfect analogy for understanding the principles of risk and resilience management. When we drive, we have an objective: a destination to reach. Similarly, in business,… Continue reading Risk and Resilience Management: Lessons from Driving a Car

As 2024 comes to a close, it’s been a year of significant activity and transformation in the Governance, Risk Management, and Compliance (GRC) space. This year marked another milestone in… Continue reading Reflecting on 2024 and Looking Ahead to 2025: Key Trends and Insights in the GRC Market

Winston Churchill once remarked, “True genius resides in the capacity for evaluation of uncertain, hazardous, and conflicting information.” In today’s complex and rapidly evolving world, this quote rings truer than… Continue reading True Genius in GRC: The Need for Risk Intelligence

The regulatory landscape for Environmental, Social, and Governance (ESG), operational resilience, and third-party risk management (TPRM) is undergoing a profound transformation. Organizations across Europe—and those operating within European supply chains—are… Continue reading ESG & Resilience: Transforming Third-Party Risk and the Extended Enterprise

In today’s technology-driven world, digital infrastructure has evolved from a supporting asset to the core of organizational operations. Every industry, from finance and healthcare to manufacturing and retail, relies on… Continue reading Risk & Resilience: Navigating the Digital-Driven Era