Scott Goolik - VP, Compliance and Security Services

If you’re staring down the gauntlet of a GRC audit, you may be tempted to envy an earlier generation of business leaders. Things seemed a lot simpler then, at least…

When business managers talk about “Governance, Risk Management and Compliance” (GRC), the subtext is usually that the phrase should be accompanied by the warning, “May cause drowsiness. Do not operate…

Segregation of Duties (SoD) comprises one of the foundational controls in an effective Risk and Compliance (GRC) program. SoD involves separating people who execute the different steps of business transactions…

After you have conducted a GRC tool comparison (as detailed in part two here), it is crucial that you also prepare for and effectively implement your automation solution so that…

As discussed in part one of this series, there are very real, tangible costs and other “soft” costs to living with current manual methods of IT security provisioning and compliance…

Manual performance of governance, risk, and compliance (GRC) activities is inherently more perilous than using a GRC automation tool. In this three-part series, we will explore the dangers of manual…

Segregation of Duties (SoD) Conflicts Happen Today’s fast changing business and regulatory climate puts a significant burden on organizations as they work to streamline and transform their businesses to stay…

Constant Change Pressures GRC and Business Operations Today’s organizations are constantly changing. Gone are the days of a static environment that slowly evolves.  The digital economy demands rapid business transformation…

Governance, Risk and Compliance (GRC) – Rules of the Road Rules govern many aspects of our lives.  Traffic rules are designed to reduce risks for drivers and pedestrians and lower…

Compliance processes shouldn’t be a big source of stress or resources — in fact, if anything, they should help you avoid stress and conserve resources. You set a policy, put…