No "one-size-fits-all" decision process -- no worries -- NACD, OCEG & SAS can help!

An OCEG blog post that went live earlier today describes a concept that Chuck Re Corr and I refer to as decision triage.  The post connects the concept to OCEG's GRC Capability Model (OCEG refers to the Open Compliance and Ethics Group, a non-profit think tank founded by Scott Mitchell in December […]

Post a Comment

What's needed -- innovation or more regulation?

The pace of regulation I was recently reading the 2011 edition of an annual report on federal regulations in the US entitled: "Ten Thousand Commandments 2012," by Clyde Wayne Crews, Jr. The report combines estimates from credible government sources and academia to arrive at a $1.8 trillion cost of the […]

Post a Comment

Making GRC Personal

Users of software vary in job responsibilities and also in focus.  In the parlance of software developers, users are commonly categorized as representing a particular persona, based on their business role in an organization.  In the case of enterprise GRC solutions, some examples of common persona include risk managers, compliance […]

Post a Comment

GRC solution can speed the achievement of objectives through collaboration

        Today marks the announcement of the latest release of the SAS® Enterprise GRC solution at the SAS-sponsored Premier Business Leadership Series.  The main focus of GRC, short for governance, risk and compliance, is best articulated by the Open Compliance and Ethics Group as:  The reliable achievement of […]

Post a Comment

Back From Extended Travel Abroad

Apologies! I have barely had time to pick up my keyboard in between expense reports, documenting meetings, action items, and dealing with a backlog of to-do's from being away from the office. In mid-May, I embarked upon a 4 week European excursion that found me in London, Paris, Monaco, and […]

Post a Comment

Part 5 – ‘Self’ Audit, GRC and Efficiency

The previous four blogs in this series touched on some important concepts companies need to understand and manage in order ensure growth and success: Safeguarding Compliance, Seamless Collaboration, Avoiding Perfect Storms and Data Breach Remediation and Prevention. Audit is our fifth topic in this series. Any definition of GRC is […]

Post a Comment

Series on New GRC White Papers – Part 4 (Final Installment)

[ Note: In this four part series, I highlight each of four new white papers that were published in conjunction with the April 5 product launch of the powerful new SAS Enterprise GRC 4.3 solution.] Authored by my friend and colleague, Manoj Kulwal, Safeguarding Compliance -- Transcending operational silos through […]

Post a Comment

Series on New GRC White Papers – Part 3

[ Note: In this four part series, I highlight each of four new white papers that were published in conjunction with the April 5 product launch of the powerful new SAS Enterprise GRC 4.3 solution.] Data Breech Remediation and Prevention -- The GRC imperative to protect customer data is the […]

Post a Comment

Series on New GRC White Papers – Part 2

[ Note: In this four part series, I highlight each of four new white papers that were published in conjunction with the April 5 product launch of the powerful new SAS Enterprise GRC 4.3 solution.] Avoiding Perfect Storms -- Creating a holistic GRC view for early warning reinforces the collaboration […]

Post a Comment

Series on New GRC White Papers – Part 1

[ Note: In this four part series, I highlight each of four new white papers that were published in conjunction with the April 5 product launch of the powerful new SAS Enterprise GRC 4.3 solution.] GRC encompasses just about every aspect of running an enterprise. Hence, there are many areas […]

Post a Comment