Upcoming Events . . .
Latest Pontifications & Thoughts . . .
Are Your Policies a Mess? A Maze of Confusion?
Effectively managing policies is easier said than done. Ad hoc or passive approaches mean that policies are outdated, scattered across the organization, and not consistent– resulting in confusion for recipients… Continue reading Are Your Policies a Mess? A Maze of Confusion?
Maintaining Internal Controls in Dynamic and Distributed Business
Organizations operate in a field of risk landmines. The daily headlines reveal companies that fail in risk, compliance, and internal controls. Business today is complex in its operations and corresponding… Continue reading Maintaining Internal Controls in Dynamic and Distributed Business
2019 GRC User Experience Award Nominations
GRC 20/20 is accepting nominations for the 2019 GRC User Experience Awards! Governance, risk management and compliance (GRC) is a part of everyone’s job. Too often we shovel GRC into… Continue reading 2019 GRC User Experience Award Nominations
Operational Resiliency: Connected Management of Operational Risk
I am sitting in a pub in London having a pint after an intense week of interactions with organizations. My mind is laser focused on the burning issue of the day: operational… Continue reading Operational Resiliency: Connected Management of Operational Risk
Manage Your Privacy Journey: GDPR, CCPA & Beyond
I love adventures! Whether in a city or out in nature, it is exciting to go out and do things. Simple adventures do not require a lot of planning, but… Continue reading Manage Your Privacy Journey: GDPR, CCPA & Beyond
Efficient and Effective Third-Party GRC Management
Modern Organization: Interconnected Maze of Relationships Traditional brick and mortar business are a thing of the past. Physical buildings and conventional employees no longer define organizations. The modern organization is… Continue reading Efficient and Effective Third-Party GRC Management
GDPR: Moving Forward Out of the Doldrums
I love sailing. It has fascinated me since I was in high school, but only recently have I taken up learning to sail. While I have not sailed across an… Continue reading GDPR: Moving Forward Out of the Doldrums
Monitoring and Managing Risk Effectively
Organizations take risks all the time but fail to monitor and manage risk effectively. A cavalier approach to risk-taking is a result of a poorly defined risk culture. It results… Continue reading Monitoring and Managing Risk Effectively
Understanding & Improving Governance, Risk Management & Compliance
Governance, risk management & compliance (GRC) is something an organization does and not something an organization buys. GRC, done properly, is what is achieved throughout the business and its operations. By… Continue reading Understanding & Improving Governance, Risk Management & Compliance
The One Regulation to Rule Them All: UK SMR/CR & Cascading Regulations
For those of you on this list that know me on a personal level, I am a huge Tolkien fan. In fact, I am just a Master’s thesis away from… Continue reading The One Regulation to Rule Them All: UK SMR/CR & Cascading Regulations
Managing Risk & Compliance in the Extended Enterprise
Modern Organization: Interconnected Maze of Relationships No man is an island, entire of itself; Every man is a piece of the continent, a part of the main.[1] Replace the word… Continue reading Managing Risk & Compliance in the Extended Enterprise
Enabling the 1st Line of Defense with Policy, Training & Issue Reporting
Like battling the multi-headed Hydra in Greek mythology, redundant, manual, and uncoordinated governance, risk management, and compliance (GRC) approaches are ineffective. As the Hydra grows more heads of regulation, legal… Continue reading Enabling the 1st Line of Defense with Policy, Training & Issue Reporting
