In today’s interconnected world, the relationships that businesses forge with third parties are akin to friendships—built on trust, integrity, and resilience. Just as strong friendships require shared values, ethical behavior,… Continue reading Strengthening the Bonds of the Extended Enterprise: A Unified Approach to Third-Party Risk Management

I am sure this will be controversial, many love their role and title. First, some perspective . . . my career started in IT security. I cut my GRC teeth… Continue reading The Death of the CISO: A Eulogy & Reincarnation

I love feudal Japan! After my love for medieval Europe is my love for feudal Japan. Perhaps they are on par with each other as both of these eras excite… Continue reading Seven AI Samurai of GRC: Protecting the Organization

This past week has seen a global risk event in the Crowdstrike/Microsoft outage that illustrates the need for organizations to address risk and resilience management . . . Risk management… Continue reading Understanding the Interrelationship of Risk and its Impact on Operations

Dynamic, Disrupted & Distributed Business is Difficult to Control Organizations take risks but fail to monitor and manage these risks effectively in an environment that demands risk agility and resilience.… Continue reading The Need for Contextual Awareness of Risk & Resilience

Modern organizations are not defined by brick-and-mortar walls and traditional employees; they are extended enterprises comprising third-party relationships, which often nest themselves in layers and transactions of complexity. In today’s… Continue reading Understanding Corruption: Navigating Third-Party Risk in Supplier and Vendor Relationships

Imagine driving a car while only looking in the rearview mirror, occasionally glancing at your dashboard. This is how many organizations approach risk management today—focused on past issues and compliance-driven… Continue reading Is Your Risk Management Program Driving with the Rearview Mirror?

Looking for a path to environmental, social and governance (ESG) insights in a forest of GRC data The last few years have shined a light on GRC (governance, risk management,… Continue reading How to Build Your GRC Strategy in an ESG Era

In the evolving world of financial services, regulatory technology (RegTech) has emerged as a crucial player as part of the broad GRC market of governance, risk management, and compliance solutions.… Continue reading Navigating the Complex Landscape of RegTech

I am in London throughout June and interacting with various GRC RFPs in the United Kingdom; several are focused specifically on third-party risk management. Next week, many UK organizations will… Continue reading Addressing Third-Party Risk Management Challenges with AI Automation

Governance, Risk Management & Compliance (GRC) – along with all of its segments of ESG, third-party risk, audit, internal control and more – are hot topics globally, but particularly across… Continue reading GRC in the United Kingdom & Beyond . . .

Yesterday, I was in a hurry. I had a family medical appointment and needed to get back to the office. I got to our apartment, hopped on my bicycle, and… Continue reading When GRC (related) RFPs Crash and Fail