Ten GRC Issues

Filed in Risk Management on December 19, 2011 with no comments

The initial focus for a Governance, Risk & Compliance (GRC) program is to collect and disseminate information to stakeholders across the enterprise to enable early and systematic management of risk exposures and disclosures, and to prevent, detect, report and remedy violations for all applicable laws, regulations and policies. This is no small task. It entails automation of manual processing and elimination of redundancy and inconsistency in data and processes. Here is a list of the 10 most pressing GRC issues corporations are concerned with today:
1. Regulatory compliance (e.g., Solvency II, Dodd-Frank, Basel III, etc.).
2. Vendor supply chain (e.g., food, drug, medical).
3. Audit (detection of internal control weaknesses, potential violations of policy).
4. Enterprise risk management (both financial and nonfinancial, including brand reputation).
5. Fraud (financial crimes in medical, financial, government and other areas, including money-laundering).
6. Business continuity (disaster recovery from flood, storm, earthquake, terrorism, explosion, contamination).
7. Health and safety environment (e.g., cessation of operations when workforce would be at unmanageable risk).
8. Predatory and fair lending and financial reform.
9. Sustainability and green initiatives.
10. Privacy and information security.
When it’s time to choose a software solution to manage and automate data for GRC, ensure that it addresses operational risk management, policy management, the audit function, and business strategy planning and management. The emphasis beyond that base level of operational coverage is something that each organization will make based upon its needs, goals and risk appetite. GRC is the direction toward which all firms need to move to be successful and avoid the surprises that can cause them to cease operation or be acquired by a competitor (e.g., Enron, WorldCom, Lehman Brothers, Countrywide, New Century, IndyMac, Washington Mutual and Wachovia).

Share
Webb

About the Author

Author of novels and non-fiction articles for Internet magazines and publications. Legal, insurance, and risk management professional with over 35 years of diverse legal and management experience in business, financial services, the judicial system, and government. Has held high-level positions in federal, state and local government, including U.S. Associate Attorney General and Chief Justice of the Arkansas Supreme Court. Experience in all facets of management including supervision of financial operations and large legal staffs involved in civil litigation, tax, anti-trust, environmental and employment practices. Recent emphasis has been on risk management, regulatory oversight, and insurance. Knowledgeable and congenial leader who demonstrates the ability to analyze legal and business challenges and recommend and implement valuable solutions. Available to speak or conduct training sessions. Current clients include individual who had total fire loss of home and insurance company denying coverage for replacement, malpractice claim against insurance broker (successfully dismissed), and major company doing overall assessment of risk and insurance coverages. Specialties: Author, Lecturer, Law, Risk Management, Commercial Insurance, Negotiations, Mediation, Non-Profit Risk Analysis, and Finance.

Leave a Reply




If you want a picture to show with your comment, go get a Gravatar.