My response to Steven Minsky’s blog on: ERM vs GRC? SEC Says No to Myopic Approach: Costly Example from Goldman Sachs   Steve, You are struggling with understanding GRC. Everything… Continue reading ERM vs GRC? Response to Steven Minsky's Blog

  Whether you use the term or not – the fact is organizations do GRC. You will not get one organization to stand up and state they lack governance, do… Continue reading GRC Professional Certification: Call to Action

Good research and information is the core of a successful strategy. As organizations seek to understand how their corporate compliance program stacks up against others it is necessary to get… Continue reading 2010 Compliance Trends & Directions – A Corporate Integrity Research Survey

  I have stated it before and I will state it again: the typical organization is a mess when it comes to managing policies and procedures. Organization size does not… Continue reading Providing Consistent Policies Through a Style and Language Guide

  There are good conferences and bad conferences. Having spent seventeen professional years attending various GRC, risk, compliance, and security conferences – most are categorized in my poor to bad… Continue reading GRC Achievement Awards & Compliance Week 2010

  Multiple interests require multiple threads to weave into the intricate pattern of GRC. I will keep the articles coming on Effective Policy Management & Communication but also have sufficient… Continue reading Everything I Need to Know About Risk Management I Learned In . . .

The Atlanta GRC bootcamp is going well! One discussion/interaction point was to define GRC – the group came up with some excellent points. They include: GRC is about how to… Continue reading What is GRC?

  Most organizations fail to manage the lifecycle of policies. This results in policies that are out of date, ineffective, and not aligned to business needs. It further opens the… Continue reading Defining a Policy Management Lifecycle

  We now turn our attention back to my series on Effective Policy Management & Communication. In the previous posting we looked at the disarray and chaos of how policies… Continue reading Policies, Done Right, Articulate Culture

Business is complex and dynamic, and requires agility to stay competitive. Market leadership requires the organization be quick to respond to changing conditions – to pause means loss. Governance, risk,… Continue reading The Value of a Common Architecture for GRC Platforms

When you think you have heard everything . . . One of the attendees at the San Jose GRC Fundamentals, Strategy, and Technology Bootcamp today shared an interesting conversation she… Continue reading Wanted: GRC Psychologist

The San Jose GRC Fundamentals, Strategy, & Technology bootcamp is underway with terrific interaction. The bootcamp is comprised of implementers of large down to medium sized organizations, professional service firms,… Continue reading Top GRC Questions & Issues