Finding Parallels in SOX Compliance and ERM


My phone rang earlier this week, and at the other end of the line was my compliance officer contact in higher education. “Matt,” she said, “I’m looking for GRC software that can help with the university’s risk management program. We started with a database in Microsoft Access and want something that can really handle enterprise…

Read More

Assessing the TCO of Your GRC Tech Project


Implementing GRC technology is probably one of the least pleasant tasks compliance officers have to do. I have literally had one compliance officer call me to complain, “We were using Vendor A, and they stunk, so we’re trying Vendor B,” followed by another compliance officer who said, “We were using Vendor B, and they stunk,…

Read More