OCEG Blogs

Group blogs

Organization

Does risk management come in one size? Should the auditor use the same standard to assess risk management at every organization? blog

This week, I wrote about how to audit risk management on my IIA blog. Not everybody, either in comments on the blog or elsewhere on LinkedIn, understood my point.

The risk management program has to be sized and oriented to meet the needs of the organization.

Is there value in the concept of GRC? blog

Submitted by nmarks on Nov, 19 2010

I have blogged frequently about the concept of GRC, the definition I use (from OCEG), and why I believe there is value. For example, there was a lot of discussion here.

OCEG | Open Compliance and Ethics Group

Does risk management come in one size? Should the auditor use the same standard to assess risk management at every organization? blog

Is there value in the concept of GRC? blog

GRC Market Developments: Reflections on IBM/OpenPages, Wolters Kluwer/FRS Global, and Thomson Reuters blog

Why GRC & What Is It? blog

Policy Communication in a YouTube Generation blog

Achieve GRC Value: Efficient Business Process and Application Monitoring blog

Managing Risk & Compliance Across Extended Business Relationships blog

Enterprise Risk Management Policy Structure blog

GRC Reference Architecture: Making Sense of the GRC Technology Landscape blog

Providing Consistent Policies Through a Style and Language Guide blog

All Access Pass

GRC Fundamentals on Demand

Standards

Tools and Services

Education

Community

About