Earlier this week the Institute of Internal Auditors held its annual GRC Conference in Nashville, Tenn. Since Radical Compliance could not attend this year, we grabbed a few tweets and photos published online from attendees to catch up on what was discussed. Without further delay, read on…
Our first item of note: In a sign of how much governance, risk, and compliance are merging with technology, the IIA held the GRC Conference in conjunction with ISACA, the association of IT governance and audit professionals.
— Gary Van Prooyen (@GaryVanProoyen) August 13, 2018
Can’t have a technology conference without a keynote speaker (New York University professor Luke Williams, in this case) talking up innovation!
— ISACA International (@ISACANews) August 13, 2018
This is a good point, assuming your C-Suite will tolerate experiments that end in failure. Not all of them do.
#GRCConf opening keynoter @LukeGWilliams says practitioners need to avoid falling into trap of only experimenting with new ideas when there’s a pressing need. Has to be ongoing, even with no guarantee of success.
— Jay Schwab (@JaySchwab) August 13, 2018
— Alykhan Merani CPA (@AlykhanMerani) August 13, 2018
An excellent point that compliance officers can also appreciate.
Cybersecurity is not an IT problem – Creating a Resilient Security Culture through Intervention- Sharon Smith
— Adjoa Asamoah (@AJ_Asamoah) August 13, 2018
This statistic is quite believable and also dismaying, since digital transformation of internal audit can be profoundly useful to an organization. (See the podcast series Tom Fox and I published on this subject earlier this week.)
71% of polled audience at the @IIA #ISACA #GRC conf live session on “Digital Transformation: Is #InternalAudit Ready?” say the internal auditors in their organizations do not have the right skills to effectively evaluate #DigitalTransformation and controls
— Anas Al Sulaimi (@anas_sulaimi) August 14, 2018
Obligatory photo of networking reception.
— Adjoa Asamoah (@AJ_Asamoah) August 14, 2018
You can see more tweets from the conference under the hashtag #GRCConf — and I gotta say, ISACA did a better job pounding out the tweets. Internal auditors need to step up their Twitter game in 2019.
And in a case of cosmic GRC convergence, RSA Archer will be holding its own user conference in Nashville starting Wednesday, just a few blocks from where IIA and ISACA have been holding theirs. So that’s a lot of GRC professionals floating around Nashville this week, and it breaks my heart that Radical Compliance is not there to participate. We hope a good time is had by all.