As Sir Arthur Conan Doyle stated . . . “It is a capital mistake to theorize before one has data. Insensibly one begins to twist facts to suit theories, instead… Continue reading Putting $$$ to It: Can You Quantify Your Risk?

Last week I looked at James Bond 007 and Risk Situational Awareness where we explored how organizations need to be like James Bond and have full situational awareness of risk… Continue reading Doctor Strange: Chief Risk Officer in the Multiverse of Uncertainty

I am so excited about this evening! After a long wait, I am going to the new James Bond 007 movie, No Time to Die! I am making it a… Continue reading James Bond 007 and Risk Situational Awareness

Martin Luther King Jr stated: Whatever affects one directly, affects all indirectly. I can never be what I ought to be until you are what you ought to be. This… Continue reading The Foundation of ESG is in Policy Management

Issuing well-crafted and appropriately targeted policies is a necessary first step in clearly defining and communicating the organization’s values, boundaries, practices, and expectations. Policies are the vehicle to ensure culture… Continue reading Managing & Communicating Policies in the “NEW NORMAL”

Last week we looked at Regulatory Change RFP/Solution Capabilities this week we look at how to measure the maturity and trajectory of an regulatory change management program . . .… Continue reading GRC 20/20’s Regulatory Change Management Maturity Model

Last week we looked at GRC Architecture to Manage Regulatory Change this week we get more into the specific capabilities that technology should deliver to automate and manage the regulatory… Continue reading Regulatory Change RFP/Solution Capabilities

Last week we looked at How to Define a Regulatory Change Management Strategy and Process, this week we look at how to leverage technology to automate and manage regulatory change… Continue reading GRC Architecture to Manage Regulatory Change

Last week we looked at the broken of the Broken Process and Insufficient Resources to Manage Regulatory Change this week we look at how tp fix this with strategy and… Continue reading Defining a Regulatory Change Management Strategy & Process

Last week we looked at the challenge of the tsunami of regulatory change that organizations are flooded with, this week we look at how the internal processes and resources are… Continue reading Broken Process and Insufficient Resources to Manage Regulatory Change

Managing and keeping up with change is one of the greatest challenges for organizations in the context of governance, risk management, and compliance (GRC). Managing the dynamic and interconnected nature… Continue reading A Tsunami of Regulatory Change Overwhelms Organizations

After you define your Third-Party GRC Strategic Plan, and define your Third-Party GRC Processes, next comes the defining and deploying your information and architecture to enable third-party GRC/risk management .… Continue reading Information & Technology Enables Third-Party GRC