GRC 20/20’s Michael Rasmussen will be speaking on the blog below in an ESG context on the webinar: Policy & Training Management: A Foundation of a Successful ESG Program From… Continue reading Ensuring Engagement Throughout the Policy Lifecycle

GRC 20/20’s Michael Rasmussen will be speaking on the blog below in an ESG context on the webinar: Policy & Training Management: A Foundation of a Successful ESG Program The… Continue reading The What, Why & How of an Ethical Compliance Culture

Last week I had an amazing week of GRC interactions, or G[P]RC with the P being performance), in the Middle East. I was the keynote at the G[P]RC Summit in… Continue reading GRC in a United Kingdom Context

Integrity is everything to an organization. If I could rebrand the Chief Ethics and Compliance Officer (CECO) I would call it the Chief Integrity Officer, but we already have a… Continue reading Measuring the Cost of Non-Compliance

In today’s ever-changing economy, mortgage lenders and service providers face a growing number of regulations and risks in compliance. This opens up an opportunity for organizations to rearchitect their compliance… Continue reading How Mortgage Lenders Can Leverage Automation to Strengthen Compliance in a Turbulent Economy

Wow! 2022, what a rollercoaster of a year for GRC – governance, risk management, and compliance. Top discussions this past year have been around ESG, risk agility, resilience, third-party risk… Continue reading 2022 GRC Research Year in Review

Below is an abstract and the video of my keynote from the Konnect 2022 conference. My next keynote will be at #RISK in London on November 16th and 17th where… Continue reading State of GRC: A Future of Agility, Resiliency & Integrity

Last week we explored where third-party risk management strategy and technology fail, this week we turn our attention to where enterprise/operational/integrated risk management strategies and technologies fail. Yes, that world… Continue reading Where Risk Management Strategy & Technology Fail . . .

The need for cybersecurity is growing with the dynamic, distributed, disrupted, and particularly digital nature of business. Digital transformation is making cybersecurity even more critical to protect the organization, maintain… Continue reading Strengthen Your Cybersecurity Management Policy With the Human Firewall

How do you define the modern organization?  There is no binary boundary to the organization anymore, no more black and white. It is impossible to clearly state that this is… Continue reading ESG and the Geopolitical Complexities of Supplier Risk

The modern organization is not defined by brick-and-mortar walls and traditional employees. The modern organization is the Extended Enterprise of third-party and nth-party relationships. The suppliers, vendors, outsourcers, service providers,… Continue reading Where Third-Party Risk Strategy & Technology Fail . . .