
Upcoming Events . . .
Latest Pontifications & Thoughts . . .
Digital Twins in GRC: Risk That Is Simulated, Not Just Documented
In today’s turbulent global landscape, risk is no longer something that can be managed solely through static policies, controls, and spreadsheets. It is dynamic, systemic, and interdependent — flowing across… Continue reading Digital Twins in GRC: Risk That Is Simulated, Not Just Documented
How AI is Helping Companies Tackle Regulatory Compliance Challenges
Navigating risk is no small task, whether it’s staying ahead of financial crimes, managing third-party relationships, or keeping up with the constant ebb an The stakes are high, and the… Continue reading How AI is Helping Companies Tackle Regulatory Compliance Challenges
The Extended Enterprise: Tackling the Complexities of Third-Party Governance, Risk, and Compliance
Organizations today operate within an extended enterprise, a complex ecosystem of third-party relationships that span suppliers, contractors, outsourcers, service providers, and other business partnerships. One of the greatest governance, risk… Continue reading The Extended Enterprise: Tackling the Complexities of Third-Party Governance, Risk, and Compliance
Reframing Integrated Risk Management: A Historical Perspective on GRC’s Evolution
The following article, Reframing Integrated Risk Management: A Historical Perspective on GRC’s Evolution, was originally published by Michael Rasmussen on our sister site, www.GRCreport.com . . . Key Takeaways Deep… Continue reading Reframing Integrated Risk Management: A Historical Perspective on GRC’s Evolution
GRC Reflections from London – Risk & Resilience Management in a Dynamic Extended Enterprise
This past week in London was truly a whirlwind of GRC insights, discussions, and deep dives into the future of risk and resilience management. Across multiple events and countless conversations,… Continue reading GRC Reflections from London – Risk & Resilience Management in a Dynamic Extended Enterprise
The ServiceNow Emperor Has No GRC Clothes (Or Needs a Better Tailor)
“But he hasn’t got anything on!”—The Emperor’s New Clothes, Hans Christian Andersen The Fable and the Analogy Hans Christian Andersen’s tale of “The Emperor’s New Clothes” tells of a vain… Continue reading The ServiceNow Emperor Has No GRC Clothes (Or Needs a Better Tailor)
Rethinking ESG: Rediscovering the Meaning of Stewardship
In recent years, Environmental, Social, and Governance (ESG) initiatives have become a lightning rod in political discourse. Critics have reduced ESG to ideological talking points—especially on issues such as climate… Continue reading Rethinking ESG: Rediscovering the Meaning of Stewardship
Regulatory Complexity, Operational Resilience, Cyber Risk, and AI: Key GRC Imperatives for 2025
In today’s rapidly evolving world, the risk landscape is changing faster than ever. We’ve witnessed firsthand the mounting challenges organizations face with an increasingly complex web of regulatory requirements, cyber… Continue reading Regulatory Complexity, Operational Resilience, Cyber Risk, and AI: Key GRC Imperatives for 2025
Navigating the Storm: Strengthening Third-Party Governance and Risk Management in Your Extended Enterprise
The global business landscape today is a complex web of interconnected organizations—the extended enterprise. This interconnectedness delivers unprecedented opportunities for growth, efficiency, and innovation. However, it simultaneously amplifies risk exposure,… Continue reading Navigating the Storm: Strengthening Third-Party Governance and Risk Management in Your Extended Enterprise
Navigating Uncertainty: What My Wife’s Cancer Revealed About Strategic, Environmental, and Operational Resilience
In the past several months, my family has faced a deeply personal challenge — my wife’s battle with breast cancer. Observing her journey through six rounds of chemotherapy, with upcoming… Continue reading Navigating Uncertainty: What My Wife’s Cancer Revealed About Strategic, Environmental, and Operational Resilience
Putting IRM in its Proper GRC Context
A small, obscure, and misguided segment of the analyst community promotes Integrated Risk Management (IRM) as a replacement for Governance, Risk Management, and Compliance (GRC). This group incorrectly portrays GRC… Continue reading Putting IRM in its Proper GRC Context
Proactive third-party risk management: A governance-based strategy
No organization is an isolated entity. It is part of an extended enterprise of suppliers,vendors, service providers and other third parties. This complex web of relationships drives efficiency and innovation,… Continue reading Proactive third-party risk management: A governance-based strategy