Archive | The GRC Pundit Blog

Who Defines Your Corporation's Values?

Values and ethics define an individual – as well as families, societies, and culture in general. Everyone puts a stake in the ground as to what is important to him or her and what is not. We interact with others based on our values: which acts much like two magnets. If the right polarity exists […]

Continue Reading 0

Framework Approach to Governance, Risk Management, & Compliance

The landscape of governance, risk management, and compliance initiatives is broad and littered with a variety of specific standards and frameworks. Each of these specific frameworks may be good at what they focus on – but they fail to link GRC together and put everything in context with each other. Risk management, security, corporate governance, […]

Continue Reading 0

Wolters Kluwer Aquires the Gem in Policy Management – Axentis

Wolters Kluwer Tax & Accounting announced today that it acquired Axentis. This acquisition further extends Wolters Kluwer role in the GRC (Governance, Risk, & Compliance) technology and content/information market.   Axentis, according to Corporate Integrity research, has a leading policy and procedure management platform. The company has done an excellent job at addressing investigations management […]

Continue Reading 0

The Forrester GRC ‘Ripple’ (OOOPS . . . I Mean, ‘Wave’)

Analyst firms provide value as well as harm to markets. What they define, model, and predict affects billions of dollars and influences the course of organizations of all sizes and industries. I’ve had a unique perspective on this during my nine years in the market research and analyst world and for seventeen years of professional […]

Continue Reading 0

Thoughts from Compliance Week '09 Day 1

Compliance Week remains the highlight of GRC events throughout the year. As one Tweet states at the beginning of the conference: “dougcorneliusStarting the “Davos” of compliance.” Sure there are many events I enjoy for networking and catching up with others. However, Compliance Week is one of the few events I attend that actually stretches me […]

Continue Reading 0

Thoughts from the OCEG Leadership Council

A Proverb states: “Where there is no guidance, a people falls, but in an abundance of counselors there is safety.”  Much of the GRC world – with its various professional stovepipes – has struggled for guidance and direction on how to effectively integrate and define common processes for Governance, Risk, & Compliance.  Sure, we have a […]

Continue Reading 0

'Lean' GRC – Good Concept, Poor Choice of Word

  A recent discussion on the Corporate Integrity LinkedIN Group was started by Norman Marks when he stated: “How would you go about applying Lean principles to making sure your GRC processes, organization, and systems are not only effective but efficient?“  Personally, I do not like the word ‘lean’ as an adjective for GRC. Yes, […]

Continue Reading 0

Developing a GRC Strategic Plan

Governance, Risk, and Compliance can be confusing to understand in their individual capacities – bring them together as GRC and it can be even more confounding. GRC is more than a catchy acronym used by technology providers and consultants to market their solutions – it is a philosophy of business. This philosophy permeates the organization: […]

Continue Reading 0

Streamlining Compliance

Organizational exposure to compliance risk is rising while the cost of compliance soars. Additionally, the ad hoc, reactive approach to compliance brings complexity, forcing business to be less agile. Organizations typically address compliance as singular issues and obligations; as a result they have multiple initiatives working in isolation to respond to each regulatory requirement. These […]

Continue Reading 0

Response to Lumigent's "GRC Starts With C"

John Capobianco, CEO of Lumigent, recently published “GRC Starts with ‘C’” commentary. While there is much to be admired about Lumigent’s messaging and awareness campaign of application GRC – I found this particular post to be misguided.   The thrust of the message, as I understand it, is to reduce cost by tackling the C […]

Continue Reading 0