Category Archives: GRC

“Why Excel is just not good enough” – Part 1
Posted by

“Why Excel is just not good enough” – Part 1

I was on a call the other week with the Enterprise Risk Manager of a relatively sizable multi-national corporation (over 20,000 employees across a few hundred locations on nearly every continent), and she said something that got me thinking. She said, “For us, right now – Excel is good enough.” I responded by saying that […]

No, There Won’t Be New Rules On Cybersecurity – Until Someone Dies
Posted by

No, There Won’t Be New Rules On Cybersecurity – Until Someone Dies

Recently, I did an interview with Bloomberg Newsweek on the WannaCry ransomware attack that affected over 200,000 computers around the world.  The attack shutdown parts of the U.K. National Health Service leaving thousands of people without access to healthcare services, and resulted in Renault’s assembly lines being shut down in France among other things.  Newsweek […]

Crowdsourcing: Enriching Corporate Data for Risk Management
Posted by

Crowdsourcing: Enriching Corporate Data for Risk Management

Crowdsourced information from internal and external sources can enrich insight generated by governance, risk and compliance (GRC) teams to help companies mitigate risk and perform better in challenging environments. The public and collaborative nature of unstructured shared data sources (such as social media) can bring issues of interest to light faster than they may show […]

Establishing a Big Data-Driven GRC Culture
Posted by

Establishing a Big Data-Driven GRC Culture

The business complexities of today demand new resources, new investments, new ideas, and new innovative technology solutions that can integrate and automate various programs and processes, as the risk landscape and associated methodologies to manage them have undergone enormous changes. Organizations are increasingly seeking better, more proactive ways to understand and manage key areas such […]

Gearing Compliance to the Tasks at Hand
Posted by

Gearing Compliance to the Tasks at Hand

The following blog post was originally posted in the Richard Bistrong Front-Line Anti-Bribery Blog at www.richardbistrong.com and is reposted with his permission. I recently had the opportunity to travel to Chicago for my first SCCE Compliance and Ethics Institute (CEI), and attended a session  “Keeping Compliance Simple,” which was led by Ricardo Pellafone, CEO, The Broadcat […]

5 Recommendations For Effective Governance, Risk And Compliance Management
Posted by

5 Recommendations For Effective Governance, Risk And Compliance Management

Cloud adoption continues to grow, which is evident from the fact that annual 2016 revenues for cloud vendors were “within touching distance” of $150 billion. Gartner also predicts that, a corporate ‘no-cloud’ policy will be as rare by 2020 as a ‘no-Internet’ policy is today. However, a ‘’cloud-ready’ security and compliance program is the need […]