As risks become more diverse and interrelated, as laws and regulations become more complicated and as boards and executives become more accountable, the activities and controls associated with governance, risk management and compliance (GRC ) have expanded accordingly, becoming extraordinarily complex themselves. In spite of that complexity, today’s GRC activities are largely manual, not standardized and not well integrated into core business processes. The resulting situation puts organizations at greater risk and makes it difficult and costly for the CFO and other executives to do their jobs.
