Michael Rasmussen, The GRC Pundit
analyst (ˈæn.əl.ɪst | ˈæn.ə.lɪst)
- noun: someone whose job is to study or examine something in detail, in order to discoveror understand more about it and often to make predictions relating to it
pundit(pundit | ˈpəndit)
- noun: an expert in a particular subject or field who is frequently called on to give opinions about it.
Michael Rasmussen is an internationally recognized authority, thought leader, and pioneer in the disciplines of governance, risk management, and compliance (GRC). With over 30 years of experience, he is globally known for defining and shaping GRC strategy, processes, and technology. In February 2002, while at Forrester Research, Michael developed the concept of GRC — establishing the foundation for how organizations approach strategy, process, and technology in today’s complex business environment. For this, he is widely acknowledged as the “Father of GRC.”
A trusted advisor to boards, executives, and professionals around the world, Michael has dedicated his career to helping organizations design and implement effective GRC strategies that are aligned with business objectives. His work empowers organizations to be more effective, efficient, resilient, and agile. He is a sought-after keynote speaker, author, and advisor, with his thought leadership influencing legislation, regulatory frameworks, and corporate best practices globally.
Michael is the host of the Risk is Our Business podcast, where he leads conversations with global experts exploring the evolving frontiers of risk, resilience, and corporate integrity.
His distinguished contributions to risk and compliance have earned him international recognition. He is an Honorary Life Member and Global Ambassador of Risk Management with the Institute of Risk Management (IRM) and an OCEG Fellow, where he also serves on the Leadership Council and chairs the OCEG Technology Council. He has been named one of the 100 Most Influential People in Finance by Treasury & Risk and recognized as a “Rising Star in Rocky Times: Corporate America’s Outstanding Executives.”
Before founding GRC 20/20 Research, Michael served as a Vice President and Top Analyst at Forrester Research and, before that, he led the risk and compliance consulting practice at a professional services firm. His early career included managing compliance and risk functions within complex commercial enterprises in life sciences/healthcare and manufacturing.
Michael holds the following degrees:
- Juris Doctorate, Oakbrook College of Law & Government Policy
- Master of Pastoral Ministries, Nashotah House
- Master of Arts in Church History (focus on Medieval Church History), Trinity Evangelical Divinity School
- Bachelor of Science in Business, University of Phoenix
Michael holds several professional certifications:
- GRC Professional (GRCP)
- Michael helped develop the framework, training, and test for the original certification
- Integrated Policy Management Professional (iPMP)
- Michael developed the framework, training, and test for this certification
- Certified Compliance and Ethics Professional (CCEP)
- Certified Information Systems Security Professional (CISSP)
Associations & Community Involvement:
- Open Compliance and Ethics Group (OCEG)
- Institute of Risk Management (IRM)
- Information Systems Security Association (ISSA)
Online Presence:
- Blog: The GRC Pundit
- Podcast: Risk Is Our Business
- News: GRC Report
- LinkedIn: Michael Rasmussen
- LinkedIn Group: The GRC Exchange
- X (Twitter): @GRCpundit
5