We hear a lot about the challenges of compliance in today's business environment. In articles and speeches every day, experts talk about voluminous requirements, complex and conflicting obligations, fast-paced change, and lack of information. We are spending lots of money on compliance but we still have lots of gaps in coverage, lots of high risks for non-compliance, lots of self-created complexity, and lots of wasted resources. We don't have enough consistency, enough insight and, most importantly, not nearly enough confidence that we know what our compliance obligations are and that we are addressing them correctly, let alone cost effectively.

The latest installment of OCEG's GRC Illustrated Series discusses the risk factors created by the flood of compliance-based requirements and outlines the path to compliance obligation management and the steps and practices necessary to retune the compliance program, mitigate risk, and satisfy auditors, directors, and other stakeholders.