by Bryan Johnson | Apr 12, 2019 | Risk Management, SOC Reports
Evaluating Cloud Providers I have a friend who recently started a new business venture. He’s been involved in several other ventures before therefore he’s familiar with the common business processes that are performed when running a business – accounting, scheduling,...
by David Ponder | Mar 18, 2019 | Chief Compliance Officers, GRC Implementation, Risk Management
The Most Overlooked Element of Successful GRC Most GRC / IRM material focuses on things that are unique to the world of business and technology risk. This often makes sense since there is so much to consider when working with GRC. Thousands of GRC guides,...
by Adam Froemming | Feb 25, 2019 | Archer Platform, Chief Compliance Officers, GRC Implementation, RSA Archer
Path to a Successful Upgrade Completing an Archer upgrade can be a daunting task. With the relatively recent release of Archer version 6.5, as Holly Giammanco mentioned in her post “Archer 6.5 is Here!”, there are multiple good reasons to get your Archer platform on...
by Bryan Johnson | Feb 13, 2019 | GRC Implementation, RSA Archer
Agile GRC Development Process As we have blogged about in the past, when we start an Archer engagement with a new client we usually perform a Roadmap exercise that walks them through identifying their current GRC processes and rated on the basis of complexity,...
by Andrew Gunter | Jan 30, 2019 | Chief Compliance Officers, GRC Implementation
Accommodating Variations in Your GRC Software I have yet to implement a GRC solution without hearing the line “But Our Program is Different”, referring to a department’s need for an exception to how the rest of the organization manages a foundational process or...
by Holly Giammanco | Jan 23, 2019 | RSA Archer
Archer 6.5 is Here! RSA Archer recently released the next iteration of Archer – version 6.5 – and it has some exciting new updates. Here is a rundown of the new and exciting features that are available in RSA Archer Release 6.5: Elasticsearch – a licensed solution to...
by Adam Froemming | Nov 2, 2018 | GRC Implementation, RSA Archer
Cential Expands GRC Resources Cential recently teamed up with Adam Froemming who brings to the team years of experience in the design, management and governance of GRC systems. We’ve asked Adam to give us an overview of how he’s gotten to this point in his career....
by Bryan Johnson | Oct 12, 2018 | Chief Compliance Officers
Continuing the discussion on GRC implementations, it would be worth exploring the discovery phase of the project that’s critical to defining the scope of the GRC program. Without understanding where your risk and compliance activities are happening there is a risk...
by David Ponder | Sep 20, 2018 | Risk Management
“What do you think the difference is between GRC and IRM?” That’s a question we seem to hear over and over, and with good reason. I just heard that question again this week, and if you ask the internet, the answer you’ll get is underwhelming...
by Andrew Gunter | Sep 12, 2018 | Chief Compliance Officers
Often, the term “Reasonable Assurance” is used in reference to financial statement audits and is referring to assurance that they are free of material misstatement. Although this situation doesn’t really apply to the CCO’s role in oversight of compliance programs,...
