I am baffled by the ignorant that are happy with their blinders and do not see how governance, risk, and compliance interrelate and support each other to form GRC. Today… Continue reading Defining & Communicating a Culture of Risk

My apologies. Along with my commentary on Forrester’s GRC Ripple (OOOPS . .. I Mean Wave) I had promised to provide my thoughts on Gartner’s EGRC Magic Quadrant once it… Continue reading Gartner's EGRC "Arcane" Magic Quadrant

Values and ethics define an individual – as well as families, societies, and culture in general. Everyone puts a stake in the ground as to what is important to him… Continue reading Who Defines Your Corporation's Values?

The landscape of governance, risk management, and compliance initiatives is broad and littered with a variety of specific standards and frameworks. Each of these specific frameworks may be good at… Continue reading Framework Approach to Governance, Risk Management, & Compliance

Wolters Kluwer Tax & Accounting announced today that it acquired Axentis. This acquisition further extends Wolters Kluwer role in the GRC (Governance, Risk, & Compliance) technology and content/information market.  … Continue reading Wolters Kluwer Aquires the Gem in Policy Management – Axentis

Analyst firms provide value as well as harm to markets. What they define, model, and predict affects billions of dollars and influences the course of organizations of all sizes and… Continue reading The Forrester GRC ‘Ripple’ (OOOPS . . . I Mean, ‘Wave’)

Compliance Week remains the highlight of GRC events throughout the year. As one Tweet states at the beginning of the conference: “dougcorneliusStarting the “Davos” of compliance.” Sure there are many… Continue reading Thoughts from Compliance Week '09 Day 1

A Proverb states: “Where there is no guidance, a people falls, but in an abundance of counselors there is safety.”  Much of the GRC world – with its various professional stovepipes… Continue reading Thoughts from the OCEG Leadership Council

  A recent discussion on the Corporate Integrity LinkedIN Group was started by Norman Marks when he stated: “How would you go about applying Lean principles to making sure your… Continue reading 'Lean' GRC – Good Concept, Poor Choice of Word

Governance, Risk, and Compliance can be confusing to understand in their individual capacities – bring them together as GRC and it can be even more confounding. GRC is more than… Continue reading Developing a GRC Strategic Plan

Organizational exposure to compliance risk is rising while the cost of compliance soars. Additionally, the ad hoc, reactive approach to compliance brings complexity, forcing business to be less agile. Organizations… Continue reading Streamlining Compliance

John Capobianco, CEO of Lumigent, recently published “GRC Starts with ‘C’” commentary. While there is much to be admired about Lumigent’s messaging and awareness campaign of application GRC – I… Continue reading Response to Lumigent's "GRC Starts With C"