Everything Starts with Policies

When an organization fails to establish strong policies, the organization quickly becomes something it never intended. Good policies define the organization’s governance posture, corporate culture, behavioural boundaries, and objectives. Without the guidance provided by well-written and effectively managed policies, corporate culture may morph and take the organization down unintended paths. Good policies define the organization’s […]

Defining Risk in A New Operating Model

Technology and information are pervasive across organizations. If not managed, IT risks become business risks.  In this webinar, MEGA’s Cyril Amblard-Ladurantie and GRC 20/20 analyst Michael Rasmussen will discuss emerging IT compliance and risk challenges and pitfalls; how to prioritize IT compliance initiatives and remediation plans based on business criticality; how to use automation to […]

Providing Post-Pandemic Assurance: Audit’s Critical Role in the ‘New Normal’

The pandemic challenged audit with providing assurance to the organization as objectives shifted, processes changed, staff was reduced, roles and responsibilities evolved, and employees moved quickly to a work form home environment. Organizations learned firsthand about the interconnectedness of risk as a health and safety risk proved to be the initial domino that knocked over […]

Deconstructing 3rd Party Incidents

Issues and incidents in third parties are the organization’s incidents and issues. These incidents, such as a data breach, costs the organization more when it involves a third-party. Incidents in third-party relationships can happen in a variety of ways that impact data privacy, security, human rights, resiliency and delivery and more. In this webinar we […]

Engaging Employees And Developing An Ethical Culture Of Responsibility

Governance, risk management, and compliance (GRC) is the capability to reliably achieve objectives, address uncertainty, and act with integrity. This last piece of GRC is critical: at its foundation GRC is about the integrity of the organization. While objectives can be achieved in many unethical ways, organizations need to shift their thinking of GRC and […]

The Importance of Legal Governance, Risk Management & Compliance

This panel will discuss the ”new paradigm” of Legal Governance, Risk Management, & Compliance (LGRC). The legal department’s effect and overlap on governance require businesses to adopt GRC. Organizations must expand their current GRC plan to achieve the legal department’s objectives while aligning the company’s business objectives. The panel will discuss the various strategies business leaders can implement, including new business objectives and technology architecture […]

Corporate Integrity: Providing Defensibility in Compliance & Ethics

Ethics and compliance have become front and center issues from the board down into operations of the organization. Organizations aim to clearly define their values, ethics, as well as a commitment to regulations and obligations and demonstrate their integrity to stakeholders, regulators, employees, clients, as well as society in general. So much effort is going […]

Managing Third-Party Risk Throughout the Supplier Lifecycle

The extended enterprise is a risk management challenge. The volume, variety, and velocity of third-party relationships across an organization's supply chain creates an interconnected and interdependent risk environment. Organizations today require 360° visibility into risk across its supplier relationships. These risks span security, privacy, human rights, bribery/corruption, resiliency, and more. This means contextual insight and […]

Developing an Integrated Approach to Privacy & Security in the Modern Enterprise

Business is dynamic, distributed, and disrupted. It is changing moment by moment throughout every day. The continuous change of business, risks, and regulations puts data protection of personal information always in a state of flux. Organizations need an integrated privacy and data protection/security strategy to monitor and maintain the privacy and protection of personal information, […]