For more than twenty years, risk management has been shaped by the gravitational pull of Sarbanes-Oxley. SOX arose from a genuine crisis of trust, and its intentions were honorable: to reinstate accountability, protect investors, and restore faith in financial reporting. But its unintended legacy has been far larger and far more limiting. Instead of elevating……

Orchestrating Strategic, Objective-Centric, and Operational Risk & Resilience through GRC 7.0 Risk! Risk is our business. That’s what this starship is all about. That’s why we’re aboard her — Captain James T. Kirk, Star Trek: The Original Series, Season 2, Episode 20 The Enterprise was not built to sit safely in space dock. Its mission —……

In my decades of advising organizations across industries and geographies, one recurring challenge persists: articulating the value of Governance, Risk Management, and Compliance (GRC) in a way that resonates with executive leadership. Despite its mission-critical role, GRC is often seen as a cost center, a necessary but uninspiring function that checks regulatory boxes and manages……

Over the past several years — and particularly throughout this past year — I have observed a profound transformation in how organizations confront uncertainty. The traditional boundaries we once relied upon have dissolved. What used to live neatly inside departments and functions now stretches across the full expanse of the enterprise, influencing strategy, culture, ethics,……

A Structural Break, Not a Cycle By the end of this decade, the governance, risk management, and compliance (GRC) market will be almost unrecognizable. Not because a few new tools emerge or because a handful of legacy platforms finally modernize, but because the very nature of risk has outgrown the architecture most GRC solutions are……

Technology does not give you good third-party risk management. Governance does. I’ve said this before about enterprise risk management, but it applies even more profoundly to what we now call third-party risk management — or, as I prefer, the governance of the extended enterprise. Risk is not the enemy; disconnection is. The organization that cannot……

I’ll be exploring this theme in depth at Gameday Ready, London – November 7, 9:00 am–1:00 pm GMT and during the Supplier Risk Resolution Workshop – November 10, 1:00 pm–4:00 pm GMT. Both sessions will examine the inevitability of failure as the cornerstone of risk and resilience management across strategy, objectives, and operations. “Failure is not the opposite……

Orchestrating Integrity, Performance, and Foresight from the Bridge of the Enterprise The strength of the ship lies not only in its hull or engines, but in how every system — navigation, engineering, and life support — operates in perfect synchronization under a unified command. In the same way, an enterprise’s strength depends on the orchestration……

The past several weeks have been a whirlwind of engagement, ideas, and energy — and I wouldn’t have it any other way. Currently, this week is South Africa and continuing the ‘trek’ onward for two action-packed weeks in London, the conversations around governance, risk management, and compliance (GRC) with GRC 7.0 – GRC Orchestrate continue……

In just a few weeks, I’ll be in London for Gameday Ready — an immersive event designed to test how we think, decide, and adapt when the unexpected unfolds. It’s not a conference in the traditional sense; it’s a rehearsal for reality. A half-day where cyber, risk, and resilience leaders come together to simulate the unthinkable and……

Shields up! Red alert! On the bridge of the Enterprise, when an unknown anomaly threatens the ship, the crew does not panic — they orchestrate. Helm adjusts course, engineering reroutes power, science runs scans, and command makes decisions with the best available intelligence. Survival depends on coordination. This spirit of orchestration is exactly what organizations……

When I stepped onto the keynote stage in Miami at Riskonnect Konnect 2025, it felt less like a ballroom and more like a bridge. The room hummed the way a starship does before a jump to warp: alive with expectation, crewed by leaders who navigate complex systems every day. I introduced the mission simply: we……