Upcoming Events . . .

Latest Pontifications & Thoughts . . .

  • Defining a Regulatory Change Management Strategy & Process

    Defining a Regulatory Change Management Strategy & Process

    Last week we looked at the broken of the Broken Process and Insufficient Resources to Manage Regulatory Change this week we look at how tp fix this with strategy and… Continue reading Defining a Regulatory Change Management Strategy & Process

  • Broken Process and Insufficient Resources to Manage Regulatory Change

    Broken Process and Insufficient Resources to Manage Regulatory Change

    Last week we looked at the challenge of the tsunami of regulatory change that organizations are flooded with, this week we look at how the internal processes and resources are… Continue reading Broken Process and Insufficient Resources to Manage Regulatory Change

  • A Tsunami of Regulatory Change Overwhelms Organizations

    A Tsunami of Regulatory Change Overwhelms Organizations

    Managing and keeping up with change is one of the greatest challenges for organizations in the context of governance, risk management, and compliance (GRC). Managing the dynamic and interconnected nature… Continue reading A Tsunami of Regulatory Change Overwhelms Organizations

  • Information & Technology Enables Third-Party GRC

    Information & Technology Enables Third-Party GRC

    After you define your Third-Party GRC Strategic Plan, and define your Third-Party GRC Processes, next comes the defining and deploying your information and architecture to enable third-party GRC/risk management .… Continue reading Information & Technology Enables Third-Party GRC

  • Shadow Policies: Increasing Legal Exposure & Liability

    Shadow Policies: Increasing Legal Exposure & Liability

    Are you scared of shadows? You should be, as they can cause serious legal, operational, compliance, risk, brand/reputation, and integrity liability.  For the past several years organizations have been battling… Continue reading Shadow Policies: Increasing Legal Exposure & Liability

  • Becoming a Policy Management Pro with a New Online Resource

    Becoming a Policy Management Pro with a New Online Resource

    Policies, and in that context the management of policies, has become critical to define and guide culture and behavior in today’s distributed, dynamic, and disrupted business environment. Today’s organization can… Continue reading Becoming a Policy Management Pro with a New Online Resource

  • Understanding the Third-Party GRC Process Lifecycle

    Understanding the Third-Party GRC Process Lifecycle

    After you define your Third-Party GRC Strategic Plan, next comes the process of defining your third-party GRC process lifecycle . . . The third-party GRC management strategy and policy is… Continue reading Understanding the Third-Party GRC Process Lifecycle

  • ES-G-RC – The Role of GRC in Delivering ESG

    ES-G-RC – The Role of GRC in Delivering ESG

    ESG – Environmental, Social, Governance – remains front-page business news. Organizations around the world and across industries are challenged to define, implement, and report on ESG. The pressures are coming… Continue reading ES-G-RC – The Role of GRC in Delivering ESG

  • Critical Elements of a Third-Party GRC Strategic Plan

    Critical Elements of a Third-Party GRC Strategic Plan

    A sustainable third-party GRC strategy means looking to the future and mitigating risk instead of putting out fires. Organizations need to be intelligent about what processes, risk intelligence data/services, and… Continue reading Critical Elements of a Third-Party GRC Strategic Plan

  • Vendor Performance & SLA Management: A Quick Guide

    Vendor Performance & SLA Management: A Quick Guide

    Fans of the story, Alice in Wonderland, will remember how the Cheshire Cat answered Alice when she asked him which way to go. He answered, “If you don’t know where you… Continue reading Vendor Performance & SLA Management: A Quick Guide

  • Defining Third-Party GRC Management

    Defining Third-Party GRC Management

    Dissociated data, systems, processes, and a myopic risk vision leaves the organization with fragments of the truth that fail to see the big picture of third-party performance, risk, and compliance… Continue reading Defining Third-Party GRC Management

  • The Extended Enterprise Demands Attention

    The Extended Enterprise Demands Attention

    The Modern Organization is an Interconnected Web of Relationships No man is an island, entire of itself;Every man is a piece of the continent, a part of the main. John… Continue reading The Extended Enterprise Demands Attention