Why GRC & What Is It? GRC, simply put, is to provide collaboration between silos of governance, risk, and compliance. It is to get different business roles to share information… Continue reading Why GRC & What Is It?

  I am a man on a mission. Make that a business on a mission – to completely refocus organizations on how they approach policy management and communication. To take… Continue reading Policy Communication in a YouTube Generation

  Businesses are engaged in a continuous struggle to grasp the intricacies of risk management in an interconnected environment. The focus during the past few years has been on operational… Continue reading Managing Risk & Compliance Across Extended Business Relationships

There has been a lot of consolidation and restructuring in the GRC space already in 2010 – SAI Global takes the next step by acquiring Integrity Interactive.   This is… Continue reading SAI Global Acquires Integrity Interactive

As an industry pundit and analyst it is always fun to play match maker. For some time I have been pontificating that SAP and CA are very complimentary in their… Continue reading SAP and CA Deliver on Comprehensive Vision of Integration of GRC

  Business today requires agility and efficiency to stay competitive. Organizations must respond rapidly to changing conditions, while managing financial and human capital costs. Compliance processes often work against business… Continue reading Achieve GRC Value: Efficient Business Process and Application Monitoring

  While GRC is ultimately about collaboration and communication between business roles and processes, technology provides the backbone that enables GRC. To describe this technology, Corproate Integrity has defined the… Continue reading GRC Reference Architecture: Making Sense of the GRC Technology Landscape

  I am amazed at the number of risk management programs I encounter that lack an organized structure and approach. So often what we know as ERM (enterprise risk management)… Continue reading Enterprise Risk Management Policy Structure

My response to Steven Minsky’s blog on: ERM vs GRC? SEC Says No to Myopic Approach: Costly Example from Goldman Sachs   Steve, You are struggling with understanding GRC. Everything… Continue reading ERM vs GRC? Response to Steven Minsky's Blog

  Whether you use the term or not – the fact is organizations do GRC. You will not get one organization to stand up and state they lack governance, do… Continue reading GRC Professional Certification: Call to Action

Good research and information is the core of a successful strategy. As organizations seek to understand how their corporate compliance program stacks up against others it is necessary to get… Continue reading 2010 Compliance Trends & Directions – A Corporate Integrity Research Survey