Upcoming Events . . .
Latest Pontifications & Thoughts . . .
Policy Management Demands Attention
The Foundational Role of Policies in GRC Strategies Policies are critical to the organization as they establish boundaries of behavior for individuals, processes, relationships, and transactions. Starting at the policy… Continue reading Policy Management Demands Attention
Information Security in Context: The CISO as a Transformational Role in Risk Management
Information Security at the Center of Risk Chaos Inevitable Failure: Managing Information Risk in a Silo Organizations are complex. Exponential growth and change in technology, vulnerabilities, regulations, globalization, distributed operations,… Continue reading Information Security in Context: The CISO as a Transformational Role in Risk Management
The GRC Economy
I am often asked, “What do you do?” My simple answer, that I do not like, is to say that I am a consultant. This does not always help as… Continue reading The GRC Economy
IT GRC Management by Design, New York
Organizations are complex. Exponential growth and change in technology, vulnerabilities, regulations, globalization, distributed operations, changing processes, competitive velocity, business relationships, legacy technology, and business data exposes organizations of all sizes.… Continue reading IT GRC Management by Design, New York
The Critical Foundation of Third Party Management is Technology
In previous posts we looked at the following: How to Develop a Third Party Management Strategy How to Define a Third Party Management Process Lifecycle Now we turn our attention… Continue reading The Critical Foundation of Third Party Management is Technology
How to Define a Third Party Management Process Lifecycle
The third party management strategy and policy is supported and made operational through a third party management architecture. The organization requires complete situational and holistic awareness of third party relationships… Continue reading How to Define a Third Party Management Process Lifecycle
Understanding the Variety of GRC Intelligence & Content Solutions
There are lots of GRC solutions available in the market, most of which do not even call themselves GRC as they are laser focused in specific GRC areas. In fact,… Continue reading Understanding the Variety of GRC Intelligence & Content Solutions
How to Develop a Third Party Management Strategy
Managing third party activities in disconnected silos leads the organization to inevitable failure. Without a coordinated third party management strategy the organization and its various departments never see the big… Continue reading How to Develop a Third Party Management Strategy
Enabling 360° Insight & Control of Third Party Relationships
The Extended Enterprise Demands Attention The Modern Organization is an Interconnected Mess of Relationships No man is an island, entire of itself; Every man is a piece of the continent,… Continue reading Enabling 360° Insight & Control of Third Party Relationships
Providing 360° Contextual Awareness of Risk
Monitoring and Managing Risk Effectively A Challenge for Boards, Executives, and Risk Management Professionals Organizations take risks all the time but fail to monitor and manage risk effectively. Organizations need… Continue reading Providing 360° Contextual Awareness of Risk
Enabling an Integrated Compliance Lifecycle
Inevitability of Failure Ineffective Processes to Manage Regulatory Change and Compliance Regulatory change is overwhelming organizations across industries. Organizations are past the point of treading water as they actively drown in… Continue reading Enabling an Integrated Compliance Lifecycle
Enabling 360° Insight & Control of Third Party Relationships
The Extended Enterprise Demands Attention Organizations are no longer a self-contained entity defined by brick and mortar walls and traditional employees. The modern organisation is comprised of a mixture of… Continue reading Enabling 360° Insight & Control of Third Party Relationships
