Upcoming Events . . .
Latest Pontifications & Thoughts . . .
Get Your GRC House in Order: Fundamental Steps Before Buying GRC Technology
Your organization could be at risk because of the scattered and disconnected approaches of past compliance information and processes. To prevent unanticipated risk exposure, your organization may require a governance,… Continue reading Get Your GRC House in Order: Fundamental Steps Before Buying GRC Technology
What is risk management?
Risk management is maturing, but as a result needs to be understood correctly and reminded that it does not rule the roost. I have three teenage boys (19, 18, and… Continue reading What is risk management?
Concluding the GRC Analyst Rant
If you have been following my posts, you will know that I created a firestorm of discussion on: Rethinking GRC, Analyst Rant, Gartner’s 2012 EGRC Magic Quadrant. If you go to… Continue reading Concluding the GRC Analyst Rant
Accepting Nominations for the 2013 GRC Technology Innovation Awards
ANNOUNCEMENT: GRC 20/20 is accepting nominations for the 2013 GRC Technology Innovation Awards. To nominate a technology solution – please download the form. The GRC Technology Innovation Awards are to… Continue reading Accepting Nominations for the 2013 GRC Technology Innovation Awards
Effective Policy Enforcement Involves Technology
I find that ineffective and unenforced policies are rampant within organizations, and are a thorn in the side of compliance and policy managers. Mismanagement of policy has grown exponentially… Continue reading Effective Policy Enforcement Involves Technology
Policy Communication in a YouTube Generation
So you wrote a policy—now what? Policies are only effective if you can show that they have been communicated and understood. Having a written policy that nobody knows about is… Continue reading Policy Communication in a YouTube Generation
Maintaining Policies and Keeping Them Relevant
The webinar on policy management addresses a common flaw – the failure to properly maintain policies once issued. Every policy should go into a periodic review to ensure it remains accurate… Continue reading Maintaining Policies and Keeping Them Relevant
Measuring Policy Compliance and Metrics
This webinar looks at the critical issue of ensuring policy adherence, compliance, and metrics for managing polices. Attendees will learn the challenges, best practices, and benefits of a measurable and trackable… Continue reading Measuring Policy Compliance and Metrics
Increasing Compliance Effectiveness, Efficiency, and Agility with Technology
Compliance obligations and risk to the business is like the hydra in mythology — organizations combat risk, only to find more risk springing up to threaten the organization. Managing GRC… Continue reading Increasing Compliance Effectiveness, Efficiency, and Agility with Technology
Effective Policy Awareness and Training
This webinar explores the best practices for distributing policies and determining when and how to provide training. We often think that once a policy has been formally issued the job is… Continue reading Effective Policy Awareness and Training
Rethinking GRC: Analyst Rant, Gartner's 2012 EGRC Magic Quadrant
Yes, the latest Gartner EGRC Magic Quadrant is out and I am left questioning what value it provides. My first impression is that it is best for the compost pile… Continue reading Rethinking GRC: Analyst Rant, Gartner's 2012 EGRC Magic Quadrant
Accountability and Consistency in Policy Development
In my experience, policy management processes are in disarray when operating autonomously, introducing risk in today’s complex, dynamic, and distributed business environment. The typical organization lacks a structured means of… Continue reading Accountability and Consistency in Policy Development
