I’ve frequently commented on the artificiality of the emerging software category of governance, risk and compliance (GRC). The term is used to a cover a combination of what were once viewed as stand-alone software categories, including IT governance, audit documentation and industry-specific compliance management, to name three examples. While it’s still common for specific types of software to be purchased piecemeal by different departments, these disparate areas have started a long convergence process. Since just about all controls and risk management efforts require a secure IT environment to be effective, there is a growing interdependence between effective IT governance and everything else connected with enterprise GRC.
Topics: Performance Management, Predictive Analytics, Governance, GRC, Management, process, Operational Performance, Analytics, Business Performance, Financial Performance, compliance, finance, Risk, financial risk management, IT risk management, operational risk, Sarbanes Oxley, SOX