Upcoming Events . . .

Latest Pontifications & Thoughts . . .

  • A Business Case for Integrated Third-Party GRC Across the Extended Enterprise

    A Business Case for Integrated Third-Party GRC Across the Extended Enterprise

    One of the greatest challenges to organizations today is managing the extended enterprise; the web of third-party relationships that support the business and its operations. The integrity of the organization… Continue reading A Business Case for Integrated Third-Party GRC Across the Extended Enterprise

  • Delivering on Agile Compliance in Dynamic Business

    Delivering on Agile Compliance in Dynamic Business

    Organizational exposure to compliance risk is rising while the cost of compliance soars. Organizations operate in a field of ethical, regulatory, and legal landmines. The daily headlines reveal companies that… Continue reading Delivering on Agile Compliance in Dynamic Business

  • Efficiency & Agility in Accountability Compliance – SMCR, BEAR, SEAR, MIC, GIAC

    Efficiency & Agility in Accountability Compliance – SMCR, BEAR, SEAR, MIC, GIAC

    Accountability is More Than Responsibility There is a difference between accountability and responsibility. An individual or organization can outsource or delegate responsibilities, but one cannot do so with accountability. To… Continue reading Efficiency & Agility in Accountability Compliance – SMCR, BEAR, SEAR, MIC, GIAC

  • A New Framework for Defining and Approaching Information Governance

    A New Framework for Defining and Approaching Information Governance

    Information governance has become a critical objective for organizations. In the context of the pervasive use of information throughout the enterprise, operational reliance on information, and increased regulation and liability… Continue reading A New Framework for Defining and Approaching Information Governance

  • Why Policies, and Policy Management, Matters

    Why Policies, and Policy Management, Matters

    It is finally here! For the past year, I have been working hard with OCEG on the Policy Management Illustrated eBook. I have spent countless hours behind Adobe Illustrator working… Continue reading Why Policies, and Policy Management, Matters

  • Policy Engagement In A COVID & Post-COVID World

    Policy Engagement In A COVID & Post-COVID World

    The world has changed, business has changed. A worldwide pandemic has caused restructuring of processes, employees, and activities. It has forced organizations to look for agile ways to manage a… Continue reading Policy Engagement In A COVID & Post-COVID World

  • Ensuring Integrity in the Extended Enterprise

    Ensuring Integrity in the Extended Enterprise

    The value of a third-party risk management strategy Traditional brick and mortar business is a thing of the past: physical buildings and conventional employees no longer define your organization. The… Continue reading Ensuring Integrity in the Extended Enterprise

  • Rethinking Risk Management RFP Requirements

    Rethinking Risk Management RFP Requirements

    Risk management is a hot topic and focus within organizations. We are surrounded with acronyms of GRC (governance, risk management, and compliance), ERM (enterprise risk management), ORM (operational risk management),… Continue reading Rethinking Risk Management RFP Requirements

  • ENGAGING GRC TO THE FRONT-OFFICE, AND NOT JUST BACK-OFFICE FUNCTIONS

    ENGAGING GRC TO THE FRONT-OFFICE, AND NOT JUST BACK-OFFICE FUNCTIONS

    It has been stated that: Any intelligent fool can make things bigger, more complex and more violent. It takes a touch of genius – and a lot of courage to… Continue reading ENGAGING GRC TO THE FRONT-OFFICE, AND NOT JUST BACK-OFFICE FUNCTIONS

  • Role of Business Proces Modeling in GRC Requirements

    Role of Business Proces Modeling in GRC Requirements

    Over the course of a year, I interact and advise on a lot of GRC related RFPs/RFIs. Some of these are for Enterprise GRC Platforms, most are in specific domains… Continue reading Role of Business Proces Modeling in GRC Requirements

  • Next-Generation Policy Management: Collaborative Accountability

    Next-Generation Policy Management: Collaborative Accountability

    Policy management is a critical issue for organizations across industries and geographies and various sizes. In a time of chaos and change, organizations must get control of an enterprise’s perspective… Continue reading Next-Generation Policy Management: Collaborative Accountability

  • Managing Integrity Through GRC Engagement of Employees

    Managing Integrity Through GRC Engagement of Employees

    Organizations are caught in a swirling vortex of uncertainty in risk and compliance as they strive to be bastions of integrity in the center of chaos. In the midst of… Continue reading Managing Integrity Through GRC Engagement of Employees