Upcoming Events . . .
Latest Pontifications & Thoughts . . .
-
Concluding the GRC Analyst Rant
If you have been following my posts, you will know that I created a firestorm of discussion on: Rethinking GRC, Analyst Rant, Gartner’s 2012 EGRC Magic Quadrant. If you go to… Continue reading Concluding the GRC Analyst Rant
-
Accepting Nominations for the 2013 GRC Technology Innovation Awards
ANNOUNCEMENT: GRC 20/20 is accepting nominations for the 2013 GRC Technology Innovation Awards. To nominate a technology solution – please download the form. The GRC Technology Innovation Awards are to… Continue reading Accepting Nominations for the 2013 GRC Technology Innovation Awards
-
Effective Policy Enforcement Involves Technology
I find that ineffective and unenforced policies are rampant within organizations, and are a thorn in the side of compliance and policy managers. Mismanagement of policy has grown exponentially… Continue reading Effective Policy Enforcement Involves Technology
-
Policy Communication in a YouTube Generation
So you wrote a policy—now what? Policies are only effective if you can show that they have been communicated and understood. Having a written policy that nobody knows about is… Continue reading Policy Communication in a YouTube Generation
-
Maintaining Policies and Keeping Them Relevant
The webinar on policy management addresses a common flaw – the failure to properly maintain policies once issued. Every policy should go into a periodic review to ensure it remains accurate… Continue reading Maintaining Policies and Keeping Them Relevant
-
Measuring Policy Compliance and Metrics
This webinar looks at the critical issue of ensuring policy adherence, compliance, and metrics for managing polices. Attendees will learn the challenges, best practices, and benefits of a measurable and trackable… Continue reading Measuring Policy Compliance and Metrics
-
Increasing Compliance Effectiveness, Efficiency, and Agility with Technology
Compliance obligations and risk to the business is like the hydra in mythology — organizations combat risk, only to find more risk springing up to threaten the organization. Managing GRC… Continue reading Increasing Compliance Effectiveness, Efficiency, and Agility with Technology
-
Effective Policy Awareness and Training
This webinar explores the best practices for distributing policies and determining when and how to provide training. We often think that once a policy has been formally issued the job is… Continue reading Effective Policy Awareness and Training
-
Rethinking GRC: Analyst Rant, Gartner's 2012 EGRC Magic Quadrant
Yes, the latest Gartner EGRC Magic Quadrant is out and I am left questioning what value it provides. My first impression is that it is best for the compost pile… Continue reading Rethinking GRC: Analyst Rant, Gartner's 2012 EGRC Magic Quadrant
-
Accountability and Consistency in Policy Development
In my experience, policy management processes are in disarray when operating autonomously, introducing risk in today’s complex, dynamic, and distributed business environment. The typical organization lacks a structured means of… Continue reading Accountability and Consistency in Policy Development
-
Rethinking GRC
2012 marks the 10th anniversary since I first modeled a market for technology, content, and professional services and labeled it GRC. It all started with a vendor briefing with a… Continue reading Rethinking GRC
-
Tracking Change that Impacts Policy
In the time it takes you to read this article your business has changed. The economic environment has changed, your employees have changed, and there are constant changes to technology,… Continue reading Tracking Change that Impacts Policy
