For something called Governance, Risk, and Compliance, the industry spends most of its energy on compliance. Risk is the reason these programs exist, yet it remains the hardest thing to define, measure, and operationalize. Most organizations have risk registers, risk assessments, and risk scores, and still cannot confidently answer the simplest question their board will…
Event details Risk and assurance becomes strategic when it runs in the same rhythm as performance. In too many organisations, strategy lives in one place, performance reporting in another, and risk and assurance sit off to the side, producing activity, not insight. The result is familiar: leadership gets reports, but not a clear line of…
Financial risks are evolving faster than traditional audit and monitoring approaches can keep pace. As organizations face increasing complexity, regulatory scrutiny, and uncertainty, periodic reviews alone may leave critical risks and control gaps undetected. Join Michael Rasmussen, one of the industry’s leading voices on governance, risk, compliance, and assurance, as he explores how organizations are…
Most organisations preparing for Provision 29 have controls frameworks in place. The problem is that those frameworks were built for a different purpose. Spreadsheets, disconnected tools, and siloed risk and audit data were never designed to support a formal board declaration, and the fragmentation that was once just inefficient is now a genuine governance liability. The first…
The future of enterprise risk management is intelligent, connected, and adaptive. This session introduces GRC 7.0 – GRC Orchestrate, the next evolution of governance, risk, and compliance. We will explore how Digital Twins of the enterprise—virtual models of organizational processes, systems, and third-party ecosystems—can simulate risk scenarios, identify vulnerabilities, and support resilient planning. Combined with…
