Streamlining Compliance

Organizational exposure to compliance risk is rising while the cost of compliance soars. Additionally, the ad hoc, reactive approach to compliance brings complexity, forcing business to be less agile. Organizations typically address compliance as singular issues and obligations; as a result they have multiple initiatives working in isolation to respond to each regulatory requirement. These isolated compliance initiatives tend to rely on manual processes burdened with costly assessments managed through spreadsheets, often proving costly and unreliable. This modus operandi is not proactive and makes it difficult to adapt to new regulatory requirements while increasing pressure and anxieties on management, employees, and business relationships.

Access Management and Segregation of Duties: Solving the Conundrum

Access management (AM) and segregation of duties (SoD) controls have become increasingly important to executives and corporate managers responsible for preventing fraud, ensuring the security of enterprise information systems, and complying with the Sarbanes-Oxley Act and other regulations. Although AM and SoD controls have always been required, they were often viewed as part of regulatory compliance and, thus, frequently overlooked. This is changing as auditors—and the companies they audit—focus increasingly on compliance. AM and SoD solutions can help organizations streamline their audit preparations and audit cycles, lower costs—an important benefit in today’s turbulent economy—and support zero-day provisioning and deprovisioning, which can lead to increased efficiency. . .

Foundations of GRC: Commodity Risk Management

Organizations are in an ongoing effort to achieve sustainability, consistency, transparency, accountability, and efficiency across risk and compliance initiatives. The fact of the matter is: organizations need complete visibility into the portfolio of risks spread across distributed and complex business processes and relationships. A spectrum of organizations are susceptible to uncertainty and risk in relation to commodities. Rising demand for commodities, limited supplies, complex supply chains, international relations, hedging, and exchange rates – all have a large impact on the ability of organizations to produce and deliver goods to their clients profitably. As organizations define their enterprise risk and GRC strategies it is essential that they gain an understanding of the central relevance that commodity risk management plays.

Recorded Webinar: GRC 2.0 - the GRC EcoSystem

Join Michael Rasmussen, President of Corporate Integrity, for a 1-hour informative webinar exploring the GRC.EcoSystem!

The Forrester GRC ?Ripple? (OOOPS . . . I Mean, ?Wave?)

Analyst firms provide value as well as harm to markets. What they define, model, and predict affects billions of dollars and influences the course of organizations of all sizes and industries. I?ve had a unique perspective on this during my nine years...
[read more]

Compliance Week remains the highlight of GRC events throughout the year. As one Tweet states at the beginning of the conference: "dougcornelius Starting the "Davos" of compliance." Sure there are many events I enjoy for networking and catching up with...
[read more]

A Proverb states: "Where there is no guidance, a people falls, but in an abundance of counselors there is safety."  Much of the GRC world - with its various professional stovepipes - has struggled for guidance and direction on how to effectively integrate...
[read more]

• 8/25-26 - BOOTCAMP:  OCEG GRC Strategy & Red Book 2.0 Bootcamp, Seattle, WA, USA

• 8/27 - BOOTCAMP:  OCEG Developing Your GRC Technology Improvement Bootcamp, Seattle, WA, USA

• 9/16-17 - Information Security Compliance and Risk Management Institute: "Managing 3rd Party Risk & Compliance in the Extended Enterprise"

• 9/29-10/1 - The 2009 Governance, Risk Management, and Compliance Summit  Keynote: "Stakeohlder Reputation Risk: a Driver Behind Coordinated GRC Policies"