Regulatory Intelligence: Approaching Regulatory Change in a Consistent Process
The old paradigm of regulatory change management is clearly a recipe for disaster given the volume, pace of change and the broader operational impact of today's laws and regulations. Just as the CFO needs a financial system or the sales department needs CRM, legal and compliance need regulatory intelligence.
Collaborative Accountability in Policy Management: Effectively Managing Policies Across the Enterprise
Most organizations fail to manage the lifecycle of policy, resulting in policies that are out-of-date, ineffective, and not aligned to business needs. It opens the doors of liability, as an organization may be held accountable for policy in place that is not appropriate or properly enforced. Organizations require a consistent process to develop, communicate, monitor, and maintain corporate policy and procedures.
GRC Reference Architecture – Understanding the Landscape of GRC Software
While GRC is ultimately about collaboration and communication between business roles and processes, technology provides the backbone that enables GRC. To describe this technology, Corproate Integrity has defined the GRC Reference Architecture2 (this is closely aligned to the second version of the Open Compliance & Ethics Group (OCEG) GRC Technology Blueprint).
Six Critical Elements to Effective PCI DSS Compliance and Beyond
The Payment Card Industry Data Security Standard (PCI DSS), developed by the Payment Card Industry Security Standards Council, which consists of vendors such as VISA, Master Card, American Express, Discover and JCB, provides payment card data protection requirements for organizations that process card payments.
Achieve GRC Value: Efficient Business Process and Application Monitoring
Business today requires agility and efficiency to stay competitive. Organizations must respond rapidly to changing conditions, while managing financial and human capital costs.
The Big Picture of IT GRC
IT GRC is an Essential Part of Enterprise GRC. IT departments are scrambling to keep up with multiple initiatives that demand greater oversight of risk and compliance across the IT infrastructure, identities, processes and information. Most organizations approach these issues reactively - putting out IT fires wherever the flames are the hottest.
The Critical Need for Encrypted Email and File Transfer Solutions
This white paper discusses key issues around encryption for both email and file transfer systems, some of the leading statutes that require sensitive content to be encrypted, and suggestions for moving forward with encryption.
The Concise Guide to E-Discovery
The goal of this white paper is to provide an introduction to the key areas involved in developing an e-discovery capability and to help organizations plan to become better prepared for the rigors of the e-discovery process.
