Organizations take legal risks all the time but often fail to integrate these risks effectively in an environment that is continuously changing and requires agility. Too often legal is seen… Continue reading Breaking Silos with GRC and Legal

Gone are the days of simplicity in business operations. The challenges that are thrown by ever-changing regulations, distributed operations, highly competitive business landscape, evolving technologies, and huge volumes of business… Continue reading Rethinking Risk Across the Enterprise

Lacking an integrated view of risk and resilience results in business processes, services, employees, and systems that behave like leaves blowing in the wind. Organizations need to develop, nurture, and… Continue reading A New Paradigm in Risk, Resiliency & Continuity Integration

Shadows haunt the organization. Today’s organization is encumbered by things like shadow processes and shadow IT. These are rogue processes and technology that get implemented in the depths of the… Continue reading Building a Mature GRC Program: The Top 5 Considerations

Here are some thoughts on how to mature a policy management strategy from the recent GRC 20/20 research report, Risk & Resiliency Management Maturity Model: A New Paradigm on Risk,… Continue reading 360° Visibility into Risk & Resilience

Looking for a path to environmental, social and governance (ESG) insights in a forest of GRC data The last two years have shone a light on GRC – governance, risk… Continue reading How to Build your GRC Strategy in an ESG Era

ESG – Environmental, Social, Governance – is a dominant focus in organizations right now getting board-level scrutiny and attention. Organizations around the world and across industries are challenged to define,… Continue reading Ways to Enhance Your Social Accountability/Sustainability Program

In GRC 20/20’s upcoming 2022 State of the GRC Market Research Briefing, one of the changes I am doing to my market models is the integration of the former Business… Continue reading Got Risk Management? You Think You Do . . .

Here are some thoughts on how to mature a policy management strategy from the recent GRC 20/20 research report, Strategy Perspective: Policy Management Maturity Model. Mature policy management is a… Continue reading Policy Management Maturity: Level 2 – Fragmented

We are at a critical point in history, a point that can lead to two very different outcomes. The decisions organizations make today and how they manage environmental, health and… Continue reading How EHS Software Facilitates Risk Data Collection, Improves Data Accuracy & Streamlines Reporting 

ESG – Environmental, Social, Governance – received a lot of attention in 2021. Organizations across industries and around the world have had to respond to investor, stakeholder, regulator, customer, employee,… Continue reading GRC 2020’s Key Tips for ESG Reporting in 2022 

Creating a defensible compliance process is not only good for risk management. It provides organisations with mitigation should unforeseen breaches occur. The Chief Ethics and Compliance Officer (CECO) role is… Continue reading Providing Compliance Defensibility