Upcoming Events . . .
Latest Pontifications & Thoughts . . .
-
A Strategic Approach to Third Party Management, Part 1: Defining Your Strategy
Designing a third party management program starts with defining the third party strategy. The strategy connects key business functions with a common third party governance framework and policy. The strategic plan is the foundation that enables third party transparency, discipline, and control of the ecosystem of third parties across the extended enterprise.
-
Considerations When Purchasing GRC Solutions
Over the next few months I will be doing a regular series of posts on buying considerations in different areas of GRC. However, before getting into specific areas, I want to share considerations organizations should have when looking at any type of GRC related solution. The guidance provided below is applicable whether you are looking…
-
Best Practice in Model Risk Management: Modeling Your Models
Over time models have grown in variety, complexity, and use within organizations. They have moved from tactical pieces of input to a strategic pillar that provides the infrastructure and backbone for strategy and decisions at all levels of the organization. Time and evolution of models left uncontrolled bring forth loss and potential disaster. Unfortunately, many…
-
The Agile Organization: GRC as a Transformational Process
Business is complex; gone are the years of simplicity in business operations. Exponential growth, globalization, distributed operations, changing processes, competitive velocity, complex business relationships, disruptive technology, multiplying regulations, and explosion of business data encumbers organizations of all sizes. Keeping complexity and change in sync is a significant challenge for boards and executives, as well as…
-
Regulatory Change Management Maturity Model: From Ad Hoc to Agile
Mature regulatory change management requires the organization to align on regulatory risk. It also involves participation across the organization at all levels to identify and monitor uncertainty and the impact of regulatory change. GRC 20/20 has developed the Regulatory Change Management Maturity Model to determine an organization’s maturity in regulatory change management processes as well…
-
GRC Architecture to Manage Regulatory Change
This is part 4 on the topic of regulatory change management. In the previous posts we explored: Pressure organizations are under in context of regulatory change Broken processes they struggle with to… Continue reading GRC Architecture to Manage Regulatory Change
-
Defining a Regulatory Change Management Process
This is part 3 on the topic of regulatory change management. In the previous posts we explored the pressure organizations are under in context of regulatory change, in this post we look… Continue reading Defining a Regulatory Change Management Process
-
Building an Integrated and Sustainable ERM Framework
Business operations are becoming increasingly complex. Multiple factors including – exponential growth and change in risks, regulations, globalization, distributed operations, processes, technologies are impacting organizations of all sizes. Managing this… Continue reading Building an Integrated and Sustainable ERM Framework
-
Greatest GRC Challenges: Regulatory Change Management, Part 2
This is the second in a multi-part blog series on the greatest GRC challenges organizations face. This is part 2 on the topic of regulatory change management. In the previous post we explored… Continue reading Greatest GRC Challenges: Regulatory Change Management, Part 2
-
Greatest GRC Challenges: Regulatory Change Management, Part 1
This is the first in a multi-part blog series on the greatest GRC challenges organizations face. The first topic is regulatory change management in which there will a few posts.… Continue reading Greatest GRC Challenges: Regulatory Change Management, Part 1
