Success in today’s dynamic business environment requires the organization to integrate, build, and support business process with an enterprise view of risk and compliance.Without a new approach to risk… Continue reading Establishing an Enterprise View of Risk & Compliance

Most GRC software as well as GRC implementations are more like RC (without the G). Or just R or just C. Or perhaps Rc or rC. . . My position… Continue reading Where is performance & strategy in GRC?

For one thing – that would be too much of an acronym CGRCO. The subject actually came up in a corporate governance discussion group I belong to. Michael Corcoran posted… Continue reading We do not need a Chief GRC Officer!

  While GRC is ultimately about collaboration and communication between the business roles and processes responsible for varying risk and compliance functions, there is no doubt that technology has an… Continue reading The GRC Technology EcoSystem – Revised

During my latest OCEG GRC Strategy & Red Book 2 Bootcamp, one attendee stated they had seen the job title of Chief Punishment Officer in China. Any takers? On a… Continue reading Chief Punishment Officer

I am baffled by the ignorant that are happy with their blinders and do not see how governance, risk, and compliance interrelate and support each other to form GRC. Today… Continue reading Defining & Communicating a Culture of Risk

My apologies. Along with my commentary on Forrester’s GRC Ripple (OOOPS . .. I Mean Wave) I had promised to provide my thoughts on Gartner’s EGRC Magic Quadrant once it… Continue reading Gartner's EGRC "Arcane" Magic Quadrant

Values and ethics define an individual – as well as families, societies, and culture in general. Everyone puts a stake in the ground as to what is important to him… Continue reading Who Defines Your Corporation's Values?

The landscape of governance, risk management, and compliance initiatives is broad and littered with a variety of specific standards and frameworks. Each of these specific frameworks may be good at… Continue reading Framework Approach to Governance, Risk Management, & Compliance

Wolters Kluwer Tax & Accounting announced today that it acquired Axentis. This acquisition further extends Wolters Kluwer role in the GRC (Governance, Risk, & Compliance) technology and content/information market.  … Continue reading Wolters Kluwer Aquires the Gem in Policy Management – Axentis

Analyst firms provide value as well as harm to markets. What they define, model, and predict affects billions of dollars and influences the course of organizations of all sizes and… Continue reading The Forrester GRC ‘Ripple’ (OOOPS . . . I Mean, ‘Wave’)

Compliance Week remains the highlight of GRC events throughout the year. As one Tweet states at the beginning of the conference: “dougcorneliusStarting the “Davos” of compliance.” Sure there are many… Continue reading Thoughts from Compliance Week '09 Day 1