We all know that communicating information about rules and regulations pertaining to financial, legal, and human resource matters is challenging at the best of times, and rarely done well. As an organization supporting companies’ adherence to governance, risk, and compliance programs, OCEG believes strongly in generating a clear understanding of these topics. We also know […]
Mitchell Scott
Posted inFrom the Archive
Getting Ready for the IFRS Ripple Effect
Given the tough economy, a new mandate for XBRL technology, and calls for fundamental U.S. regulatory changes, for some people the Securities and Exchange Commission’s roadmap to move from U.S. Generally Accepted Accounting Principles to International Financial Reporting Standards (IFRS) barely rates a drop in our pool of awareness. At least, not on first glance—after […]
Posted inFrom the Archive
Federated Approach to Policy Management
Growth is a good thing. Don’t let it turn bad with sloppy attention to governance, risk, and compliance systems at a company in transition. That can happen quite easily. The mergers and acquisitions, expansions, affiliations, and ever-growing network of contractual arrangements that spell success can also lead to an overly complex mishmash of policies and […]
Posted inEthics & Culture
Fraud Prevention: Stop the Fraudster Before He Acts!
It is critical to recognize that fraud risk is not exclusively about the “good guys” catching “bad guys.” Given the right (wrong) circumstances, even the best people can do some of the worst things. In light of that, an organization should approach fraud risk in a comprehensive manner so that the business does not put […]
Posted inTechnology
Perfecting Your IT Infrastructure, the Backbone of GRC
An integrated approach to governance, risk, and compliance will not work without an IT infrastructure to support it; after all, take the wiring out of your Maserati and see how much good its fine-tuned Italian engineering does. Similarly, without information systems designed to move data where they’re needed, when they’re needed, GRC personnel cannot form […]
Posted inInternal Controls
Improving GRC Effectiveness, While Reducing Costs
In some organizations, the current approach to governance, risk management, internal control, and compliance (GRC) is complex and costly. It is considered a “necessary evil” to doing business, like brakes that get in the way of driving toward objectives. Well, I like to remind executives that the fastest cars have the best brakes. To have […]
Posted inFrom the Archive
A Global Reach for Internal Control
Internal controls play a critical role in helping a company achieve its core mission. They do so not only by ensuring the reliability of financial statements, but by helping companies minimize surprises and leverage opportunities as the business develops. But as business complexity increases, so must the controls that track the flow of information, material, […]
Posted inData Privacy
Privacy And Data Protection Risks
As technology proliferates, the amount of personal information collected, used, stored, transferred, and disposed by organizations increases. In turn, the risk that data will be breached at some point along the information lifecycle increases. Over the past few years, several laws and regulations have been enacted to encourage organizations to address these risks. Business Drivers […]
Posted inInternal Controls
Automated Controls And Risk Management
This month, Compliance Week and the Open Compliance and Ethics Group present the latest installment of our regular series, “GRC Illustrated.” The interactive series—which features visual representations of key governance, risk, and compliance initiatives—is intended to help readers understand how to put principles into practice (Click here for information on the series). In this month’s […]
Posted inFrom the Archive
Roadmap To Controls, Policies & Procedures
This month, Compliance Week and the Open Compliance and Ethics Group present the latest installment of our regular series, “GRC Illustrated.” The interactive series—which features visual representations of key governance, risk, and compliance initiatives—is intended to help readers understand how to put principles into practice (Click here for information on the series). In this month’s […]