Shop Talk: Moving From Compliance to ERM
Moving from silos of compliance to enterprise risk management is a complex task under the best of circumstances. Where should ERM sit within the company? How do you win support from business units? How do you get the data you need to make informed decisions about risk? At Compliance ...
Related articles
-
Article
The ‘Shalt Nots’ of GRC Implementations
There is no shortage of vendors and products in the governance, risk, and compliance software space. Choosing the wrong one can be disastrous. Just as problematic, however, is pairing a poor implementation strategy with even the best of solutions. Missteps can lead to employee revolts, cost overruns, delays, and ineffective ...
-
Article
Parsing the Difference Between GRC & ERM
Image: Lots of executives know the difference between compliance and risk management conceptually. But the difference between “governance, risk, and compliance” and “enterprise risk management”—not so much. This week, we pick apart both acronyms. “Compliance is typically what 90 percent of GRC software does,” says Steven Minsky, CEO of software ...
-
News BriefFederal Reserve Board drops reputational risk from exams, aligning with OCC and FDIC shift
Bank examiners at the Federal Reserve Board will no longer assess reputational risk during examinations, a concession to the banking industry already underway with two other U.S. regulators.