Posts Tagged ‘grc technology’
Portrait of Internal Audit Teams, Squeezed
We have two new reports this week on the predicament of internal audit functions, trapped between the need to provide better risk analysis during the pandemic and corporate overlords a bit less than willing to fund your need for better technologies. The first report came from research firm Gartner on Wednesday, and found that for…
Read MoreSEC Dings PwC on GRC Deal
The Securities and Exchange Commission has slapped audit firm PwC with a $7.9 million penalty for violating audit firm independence rules — including PwC implementing a GRC software system for one of its audit clients. An audit firm can’t do that, since those GRC software systems ultimately help employees assess the effectiveness of internal controls…
Read MoreFive-Part Series on Compliance Technology
Corporate compliance and risk officers work under tremendous pressure today — not necessarily to do more with less, but to do better with what the compliance function has, amid increasingly complex regulatory and business environments. Clearly technology is the answer to that call, but astute use of technology remains challenging. How can risk and compliance…
Read MoreLRN Gets Private Equity Infusion
News today from the GRC vendor world: LRN, a leading player in ethics training and consulting, has taken a “significant investment” from private equity firm Leeds Equity Partners. How much of an investment? LRN and Leeds won’t say. The language of the press release gives the impression that it could be a controlling interest in…
Read MoreThoughts on Compliance, AI, and AML
Accenture published a report Tuesday speculating on the future of financial markets for the next few years, with some thought-provoking points for compliance officers mired in anti-money laundering compliance. First, Accenture estimates the overall cost of risk and compliance for the financial sector at roughly $96 billion annually, and the cost of AML compliance specifically…
Read MoreUpdate on Third-Party Risk Programs
Navex Global gave a sneak peek this week of its latest report on third-party risk. The headline: too many compliance departments still rely on paper-based systems to track third parties, and therefore too many probably underestimate the risks their third parties truly pose. The 2018 Navex Global Third-Party Risk Management Benchmark Report, which surveyed 1,200…
Read MoreTwo Issues on SOX Compliance
More than 1,700 audit and compliance professionals have gathered in Nashville this week for Workiva’s annual user conference and the annual meeting of the SOX Professionals Group. Yours truly is on the scene, trying to capture all the good insight and latest news on SOX compliance. Here’s what we have from Day 1. Tuesday was…
Read MorePodcast: Compliance Trends in Finance Sector
Several weeks ago I had a post about compliance trends in the financial sector, based on a report from Thomson Reuters. That report found most financial firms aren’t cutting compliance budgets, and it offered practical insights into how compliance officers might tiptoe into more automation and use of technology. Both issues are important for compliance…
Read MoreGetting Started With the Cloud, Data, and Risk
This week I attended Oracle’s Modern Finance Experience conference here in Boston, where financial reporting professionals convened en masse to talk about risk management and new approaches in cloud-based IT to get that task done. Attendees also had the raw thrill of a private concert with the Goo Goo Dolls on Wednesday night, a band I…
Read MoreMicrosoft’s New Cyber Assessment Tool Just Dropped
Just in time for everyone gathering at the RSA Conference in San Francisco this week, Microsoft has announced plans to rate the effectiveness of customers’ cybersecurity efforts—and at least one insurance company will start using that score to set prices for its cyber-insurance policies. That move is possible thanks to Office 365, the cloud-based version…
Read More