Parsing the Difference Between GRC & ERM
Image: Lots of executives know the difference between compliance and risk management conceptually. But the difference between “governance, risk, and compliance” and “enterprise risk management”—not so much. This week, we pick apart both acronyms. “Compliance is typically what 90 percent of GRC software does,” says Steven Minsky, CEO of software ...
Related articles
-
Article
The ‘Shalt Nots’ of GRC Implementations
There is no shortage of vendors and products in the governance, risk, and compliance software space. Choosing the wrong one can be disastrous. Just as problematic, however, is pairing a poor implementation strategy with even the best of solutions. Missteps can lead to employee revolts, cost overruns, delays, and ineffective ...
-
News BriefFederal Reserve Board drops reputational risk from exams, aligning with OCC and FDIC shift
Bank examiners at the Federal Reserve Board will no longer assess reputational risk during examinations, a concession to the banking industry already underway with two other U.S. regulators.
-
PremiumThree TPRM myths worth busting
There are stories we tell ourselves in third-party risk management (TPRM) to make ourselves feel better about the corners we cut.