Enterprise GRC Management by Design, RIYADH

Governance, risk management, and compliance (GRC) isn’t a product you can buy; it’s a practice that permeates the entire organization, shaping its operations, culture, and performance. Properly implemented, GRC empowers an organization to reliably achieve objectives (governance), address uncertainty (risk management), and act with integrity (compliance). This workshop provides a comprehensive blueprint for building an effective, efficient, and agile enterprise GRC management program designed to keep pace with today’s dynamic business, regulatory, and risk landscapes.

GRC by Design requires viewing the organization through an architectural lens, integrating GRC strategies into enterprise objectives, processes, and technology infrastructure. This workshop focuses on crafting mature GRC processes that align with organizational purpose, guiding attendees in defining the ideal GRC strategy, process, information, and technology architecture. Attendees will leave with actionable insights, practical techniques, and peer perspectives on embedding GRC into the rhythm and cadence of their organizations.

Workshop Objectives:

Attendees will take home methods to address:

1. Enterprise GRC Strategy: Integrate GRC into the organization’s performance, culture, and objectives, linking GRC initiatives with the broader enterprise strategy.
2. Enterprise GRC Processes: Build GRC processes that harmonize with business operations, embedding them into the core functions to support agility and resilience.
3. Enterprise GRC Information Architecture: Develop an information framework to enable situational awareness, ensuring a 360° view of GRC within the organization’s strategic and operational context.
4. Enterprise GRC Technology Architecture: Define and deploy a technology structure that connects diverse GRC functions, enabling integrated data, collaboration, and insight-sharing aligned with enterprise goals.

Benefits to Attendees:

• Learn top-down and bottom-up approaches for embedding GRC into business strategy, operations, and culture.
• Implement GRC strategies and models tailored to align with your organization’s unique processes and objectives.
• Discover best practices and models for enterprise GRC architecture.
• Build a GRC information architecture that enhances business insight and enables effective communication across the organization.
• Facilitate integrated GRC technology and data sharing for greater organizational alignment.

Who Should Attend?

• GRC managers, architects, and strategists responsible for guiding enterprise-wide GRC initiatives
• Business managers with GRC responsibilities within their domains
• Executives and governance leaders overseeing GRC strategy
• Audit professionals ensuring GRC practices align with corporate governance
• Professionals in risk management, compliance, legal, ethics, IT, security, health and safety, and related areas involved in GRC programs

Workshop Agenda:

Part 1: Understanding GRC within the Organizational Context

• Views of GRC across the enterprise
• Ownership of GRC: Defining roles and responsibilities
• The role of GRC in achieving strategic business objectives

Part 2: Federated Enterprise GRC: Blueprint for Collaboration

• Building a collaborative GRC committee (or “herding cats”)
• Defining a GRC charter to unite diverse roles and responsibilities
• Fostering an enterprise-wide view of GRC through strategic alignment

Part 3: GRC Capability Model: Integrated Processes for Organizational Support

• LEARN: Understand organizational context, culture, and stakeholder priorities to inform strategy and actions.
• ALIGN: Link strategy to objectives, aligning actions with values, opportunities, and threats.
• PERFORM: Encourage and reward desired actions, prevent undesired ones, and detect issues promptly.
• REVIEW: Continuously assess strategy effectiveness, updating objectives as needed.

Part 4: GRC Information & Technology Architecture: Integrating GRC without Silos

• Understanding the interconnected nature of GRC data and information
• Developing a GRC ontology and taxonomy for consistent terminology and clarity
• Leveraging technology to enable seamless GRC processes, considering whether a single GRC platform or a tailored GRC architecture best fits organizational needs

This hands-on workshop combines lectures, peer collaboration, and practical tasks to ensure attendees walk away with a clear, actionable framework for implementing GRC by Design in their organizations.

GRC 20/20 Instructor . . .

Michael Rasmussen is an internationally recognized thought leader and pioneer in governance, risk management, and compliance (GRC). With over 30 years of experience, he has extensive expertise in enterprise GRC strategy and processes supported by robust information and technology architectures. Known as the “Father of GRC,” Michael was the first to define and model the GRC market in February 2002 while at Forrester, setting the foundation for the modern understanding of GRC.

Conference Host

The G[P]RC Summit is the world’s largest summit on GPRC: GRC integrated with Performance and Strategy – bringing together C-level executives, GRC experts, and industry and academia professionals from across the world to share insights, innovative solutions, and best practices needed to drive organisational success and resilience in an increasingly complex and interconnected business environment. This year’s theme, “Driving Success: Integrating GRC with Strategy Execution in a Hyperconnected World,” focuses on empowering organizations to navigate challenges and seize opportunities through a holistic, connected approach. Join us in Riyadh on 19 – 20 January or in Dubai on 22 – 23 January 2025, to gain insights from industry leaders and take your GRC strategy to the next level. Ready to transform your approach? Register at https://gprcsummit.com/and secure your spot.