I recently re-read a 2006 Harvard Business Review piece by Stephen Wagner and Lee Dittmar entitled The Unexpected Benefits of Sarbanes-Oxley and was impressed again by the authors’ prescient view that more companies would eventually see the business performance value that controls and structures demanded by SOX could provide. Much of what they predicted about the future of SOX compliance is reflected in OCEG’s new illustration on Performance-Driven Sox Compliance Management.
OCEG has a new illustration on Balancing Your Compliance Program that shows the value of having automated workforce compliance management. It’s a great resource showing how to get better results with your employees. But who besides full-time employees are part of the workforce in the current economy?
We all know that processes and technologies for governance, risk management, and compliance (GRC) have been evolving rapidly but, as the song goes, I think it’s safe to say we “ain’t seen nothin’ yet.”
We think about cyberattacks as being direct hits on our databases, but that is so 2010. Today, sophisticated criminal attacks rarely come through the front door.
Learn more about how GRC processes and technologies support a more mature and effective business continuity management (BCM) capability.
Poor GRC information waste resources and time — and may be increasing risk to your business. The answer is a four step structured approach to identifying, sharing and analyzing GRC information.
Three leading business continuity planning (BCM) experts discuss how to prepare for different levels of disaster in this pre-recorded event.
Business operators used to view in-house counsel as the “department of no.” Today’s in-house counsel has a much more varied and valuable role to play than the legal team of the past.
Fraud affects everyone in the company. It undermines trust and exposes weaknesses in the business. Can you fight fraud with the GRC Assessment Tools? Yes — let me show you how.
Too often, change management in GRC falls short, leading to disruption and lack of support for the critical risk and compliance activities that enable effective governance. The solution is to adopt a risk-based approach to change management.