How to Purchase Policy Management Solutions

A well-conceived technology architecture for policy and training management can enable a common policy and training framework across multiple departments, or just one department as appropriate. Organizations need a policy management platform that is context-driven and adaptable to a dynamic and changing environment. Compared to the ad hoc method in use in most organizations today, a policy management platform approach enables better performance, less expense and more flexibility. Some of the core capabilities organizations should consider in a policy and training management platform are . . .

Continue Reading...

Demand & Market for GRC Content & Intelligence Offerings

The role of content in GRC strategies, solutions, and architecture is becoming significant. Organizations find that they need access to risk and compliance intelligence updates, regulatory changes, risk libraries, audit templates, sanction and watch lists, sample policies, and more. GRC solutions are often differentiating themselves by their ability to provide and integrate a range of content offerings into their solution to provide complete situational awareness in a dynamic business environment.

Continue Reading...
2015-06 State of the GRC Market

2015 Q2 State of the GRC Market

The State of the GRC Market Research Briefing is a quarterly online briefing that educates attendees on the current GRC market segmentation, drivers, trends, sizing, growth, forecasting, and market intelligence. Attendees are provided an analysis of inquiry trends, organization purchasing patterns, areas of interest, scope, top GRC related solutions referenced most often, characteristics and scope of RFPs, and other buyer questions and interactions GRC 20/20 has been involved with in the past quarter. GRC 20/20's market intelligence, research, and analysis spans hundreds of research interactions each quarter with organizations looking for GRC related solutions, content, and professional services.

This content requires that you purchase additional access. The price is $195 or free for our GRC Advisor Enterprise Subscription and GRC Advisor Individual Subscription members.

Purchase this Content ($195) Choose a Membership Level

Continue Reading...
3rd party word cloud

A Strategic Approach to Third Party Management, Part 2: Designing an Integrated Architecture to Support Your Strategy

Third party management processes are used to manage and monitor the ever-changing relationship, risk, and regulatory environments in extended business relationships. While third party processes can vary by organization and industry, the common components are . . .

Continue Reading...

Now Accepting 2015 GRC Innovation Award Nominations

It has been stated that:

Any intelligent fool can make things bigger, more complex and more violent. It takes a touch of genius – and a lot of courage to move in the opposite direction.

A primary directive of innovation is to provide experience that is simple yet complete. Like Apple with its innovative technologies, GRC solutions must approach solutions in a way that re-architects the way it works as well as the way it interacts. The goal is simple; it is itself Simplicity. Simplicity is often equated with minimalism. Yet true simplicity is more than just absence of clutter or removal of embellishment. It’s about offering up the right context, in the right place, when needed. It’s about bringing interaction and engagement to GRC process and information. GRC solutions should be intuitive. 2015 GRC Innovation Award nominations will be accepted through July 12th (no exceptions, nomination form closes down at midnight CDT on July 12th).

Continue Reading...

Considerations When Purchasing Policy Management Solutions

With today’s complex business operations, global expansion, and the ever changing legal, regulatory and compliance environments, a well-defined policy management program is vital to enable an organization to effectively develop and maintain the policies needed to reliably achieve objectives while addressing uncertainty and act with integrity. This is why organizations are aggressively looking at policy management platforms to address this challenge.

Continue Reading...
3rd party word cloud

A Strategic Approach to Third Party Management, Part 1: Defining Your Strategy

Designing a third party management program starts with defining the third party strategy. The strategy connects key business functions with a common third party governance framework and policy. The strategic plan is the foundation that enables third party transparency, discipline, and control of the ecosystem of third parties across the extended enterprise.

Continue Reading...

Considerations When Purchasing GRC Solutions

Over the next few months I will be doing a regular series of posts on buying considerations in different areas of GRC. However, before getting into specific areas, I want to share considerations organizations should have when looking at any type of GRC related solution. The guidance provided below is applicable whether you are looking for something very narrow such as occupational health & safety, or very broad such as enterprise GRC platforms.

Continue Reading...

Best Practice in Model Risk Management: Modeling Your Models

Over time models have grown in variety, complexity, and use within organizations.  They have moved from tactical pieces of input to a strategic pillar that provides the infrastructure and backbone for strategy and decisions at all levels of the organization. Time and evolution of models left uncontrolled bring forth loss and potential disaster. Unfortunately, many organizations lack governance and architecture for model risk management. Organizations need to provide a structured approach for model risk management that addresses model governance, lifecycle, and architecture to manage models. A best practice is for the organization to leverage Enterprise Architecture and Business Process Modeling Tools to “model” their models.

Continue Reading...

The Agile Organization: GRC as a Transformational Process

Business is complex; gone are the years of simplicity in business operations. Exponential growth, globalization, distributed operations, changing processes, competitive velocity, complex business relationships, disruptive technology, multiplying regulations, and explosion of business data encumbers organizations of all sizes. Keeping complexity and change in sync is a significant challenge for boards and executives, as well as all levels of business operations.

Continue Reading...