2015-06 State of the GRC Market

2015 Q2 State of the GRC Market

The State of the GRC Market Research Briefing is a quarterly online briefing that educates attendees on the current GRC market segmentation, drivers, trends, sizing, growth, forecasting, and market intelligence. Attendees are provided an analysis of inquiry trends, organization purchasing patterns, areas of interest, scope, top GRC related solutions referenced most often, characteristics and scope of RFPs, and other buyer questions and interactions GRC 20/20 has been involved with in the past quarter. GRC 20/20's market intelligence, research, and analysis spans hundreds of research interactions each quarter with organizations looking for GRC related solutions, content, and professional services.

This content requires that you purchase additional access. The price is $195 or free for our GRC Advisor Enterprise Subscription and GRC Advisor Individual Subscription members.

Purchase this Content ($195) Choose a Membership Level

Continue Reading...
3rd party word cloud

A Strategic Approach to Third Party Management, Part 2: Designing an Integrated Architecture to Support Your Strategy

Third party management processes are used to manage and monitor the ever-changing relationship, risk, and regulatory environments in extended business relationships. While third party processes can vary by organization and industry, the common components are . . .

Continue Reading...
2015-GRC-Innovation-Award

Now Accepting 2015 GRC Innovation Award Nominations

It has been stated that:

Any intelligent fool can make things bigger, more complex and more violent. It takes a touch of genius – and a lot of courage to move in the opposite direction.

A primary directive of innovation is to provide experience that is simple yet complete. Like Apple with its innovative technologies, GRC solutions must approach solutions in a way that re-architects the way it works as well as the way it interacts. The goal is simple; it is itself Simplicity. Simplicity is often equated with minimalism. Yet true simplicity is more than just absence of clutter or removal of embellishment. It’s about offering up the right context, in the right place, when needed. It’s about bringing interaction and engagement to GRC process and information. GRC solutions should be intuitive. 2015 GRC Innovation Award nominations will be accepted through July 12th (no exceptions, nomination form closes down at midnight CDT on July 12th).

Continue Reading...
policy-portal

Considerations When Purchasing Policy Management Solutions

With today’s complex business operations, global expansion, and the ever changing legal, regulatory and compliance environments, a well-defined policy management program is vital to enable an organization to effectively develop and maintain the policies needed to reliably achieve objectives while addressing uncertainty and act with integrity. This is why organizations are aggressively looking at policy management platforms to address this challenge.

Continue Reading...
3rd party word cloud

A Strategic Approach to Third Party Management, Part 1: Defining Your Strategy

Designing a third party management program starts with defining the third party strategy. The strategy connects key business functions with a common third party governance framework and policy. The strategic plan is the foundation that enables third party transparency, discipline, and control of the ecosystem of third parties across the extended enterprise.

Continue Reading...

Considerations When Purchasing GRC Solutions

Over the next few months I will be doing a regular series of posts on buying considerations in different areas of GRC. However, before getting into specific areas, I want to share considerations organizations should have when looking at any type of GRC related solution. The guidance provided below is applicable whether you are looking for something very narrow such as occupational health & safety, or very broad such as enterprise GRC platforms.

Continue Reading...
2015-04_StP_Model-Risk-Management_image3

Best Practice in Model Risk Management: Modeling Your Models

Over time models have grown in variety, complexity, and use within organizations.  They have moved from tactical pieces of input to a strategic pillar that provides the infrastructure and backbone for strategy and decisions at all levels of the organization. Time and evolution of models left uncontrolled bring forth loss and potential disaster. Unfortunately, many organizations lack governance and architecture for model risk management. Organizations need to provide a structured approach for model risk management that addresses model governance, lifecycle, and architecture to manage models. A best practice is for the organization to leverage Enterprise Architecture and Business Process Modeling Tools to “model” their models.

Continue Reading...

The Agile Organization: GRC as a Transformational Process

Business is complex; gone are the years of simplicity in business operations. Exponential growth, globalization, distributed operations, changing processes, competitive velocity, complex business relationships, disruptive technology, multiplying regulations, and explosion of business data encumbers organizations of all sizes. Keeping complexity and change in sync is a significant challenge for boards and executives, as well as all levels of business operations.

Continue Reading...
2015-04_StP_Model-Risk-Management_image3

Model Risk Management: Enabling A Firm Foundation for Model Risk Management

Financial services organizations rely on models to analyze and represent outcomes that feed into the strategy, products, pricing, and risk. While models are critical to the business they are often seen as a mere tool without a full appreciation for their relationship and impact on the organization’s, decisions, and operations. Expanding use of models across the organization reflects the extent to which models improve business decisions. However, models come with risks when internal errors or misuse results in bad decisions. Regulators are increasing regulatory requirements and scrutiny into how financial services organizations govern and use models. To address increased regulatory scrutiny, but more importantly provide integrity to performance and strategy, financial services organizations need to provide a structured approach for model risk management. This approach needs to address the governance, lifecycle, and architecture of models to mitigate risk while capitalizing on the value when properly used. This includes the governance of end user computing controls that are the operational fabric of many models. Spreadsheets are the particular subject of increased regulatory scrutiny and control.

This content is for GRC Advisor Enterprise Subscription, GRC Advisor Individual Subscription and GRC Basic Individual Subscription members only.
Log In Register
Continue Reading...
RegulatoryChangeMaturity_GRC2020-2

Regulatory Change Management Maturity Model: From Ad Hoc to Agile

Mature regulatory change management requires the organization to align on regulatory risk. It also involves participation across the organization at all levels to identify and monitor uncertainty and the impact of regulatory change.

GRC 20/20 has developed the Regulatory Change Management Maturity Model to determine an organization’s maturity in regulatory change management processes as well as information and technology architecture.

Continue Reading...