

You are currently focusing on the certification. Go to program dashboard.
This is a report on the findings of the 2025 GRC Maturity Survey conducted by OCEG™, a global nonprofit organization focused on governance, risk, and compliance (GRC). The survey gathered responses from 856 professionals globally to analyze the current state of GRC maturity and provide evidence-based guidance for organizations seeking to advance their GRC capabilities. Thank you SAI360 for sponsoring this study.
The key findings indicate that GRC strategy is the primary driver of maturity, with organizations having a formal GRC strategy demonstrating significantly higher performance across all GRC disciplines compared to those without a strategy.
The report provides strategic recommendations for developing formal assessment strategies, building organizational capabilities, enhancing measurement and monitoring, and addressing technology and integration gaps to improve GRC maturity.
Featured in: GRC Capabilities
Like many websites, we use cookies and similar technologies such as session storage and analytics scripts to keep the site running smoothly and understand how visitors interact with our content. These tools may automatically collect technical information, including your device type, IP address, and browsing behavior.
By continuing to use this site, you acknowledge and accept this usage. For more information, please review our Terms of Service and Privacy Policy.
2942 N 24th St Ste 115 PMB 85352, Phoenix, AZ, 85016-7849, USA
Information & Billing
+1 (602) 234-9278
Principled Performance®, Driving Principled Performance®, Putting Principles Into Practice®, OCEG®, GRC360°®, ActiveLearning®, EventDay® and LeanGRC® are registered trademarks of OCEG®.
Protector Skillset™, Protector Mindset™, Protector Code™, Lines of Accountability™, GRC Professional™, GRCP™, GRC Fundamentals™, GRC Auditor™, GRCA™, GRC Audit Fundamentals™, Data Privacy Fundamentals™, Integrated Data Privacy Professional™, IDPP™, Policy Management Fundamentals™, Integrated Policy Management Professional™, IPMP™, Integrated Audit & Assurance Professional™, IAAP™, Integrated Governance & Oversight Professional™, IGOP™, Integrated Strategy & Performance Professional™, ISPP™, Integrated Risk Management Professional™, IRMP™, Integrated Decision Management Professional™, IDMP™, Integrated Compliance & Ethics Professional™, ICEP™, Integrated Business Continuity Professional™, IBCP™, Integrated Information Security Professional™, IISP™ are trademarks of OCEG®.