SlideShare a Scribd company logo

GRC Fundamentals

Download as PPTX, PDF
3Sixty Insights, profile picture
3Sixty Insights

The document discusses the growing need for governance, risk, and compliance (GRC) solutions amidst increasing regulatory complexities and market volatility. It highlights the challenges in implementation, such as conceptualizing ROI and aligning GRC capabilities with organizational needs. Key themes include the transition from point GRC to enterprise GRC and the importance of compliance as a strategic initiative within organizations.

TechnologyBusiness
Related topics:
Corporate Governance Risk-ManagementRegulatory Compliance Risk Assessment Enterprise Risk Management Data Security
1 of 6
Downloaded 82 times
1
2
3
4
Most read
5
Most read
6
Most read
Governance, Risk, & Compliance Fundamentals David Houlihan Principal Analyst Blue Hill Research ©2013 Blue Hill Research. All Rights Reserved. ©2013 Blue Hill Research. All Rights Reserved.
Need for GRC Solutions is Growing, But Implementation is Challenging Compliance becomes top risk priority of Directors Increasing market / business volatility Demand for Solutions Regulatory regimes more complex Agencies more aggressive about enforcement The frequency and pain of data breaches is growing Information and function silos results in overlooked opportunities and exposures Sorting out GRC vendors visions and value propositions Challenges to Implementation ©2013 Blue Hill Research. All Rights Reserved. Difficulty conceptualizing ROI Unclear how to prioritize implementation strategies to maximize organizational benefit
Map GRC Capabilities to Organizational Needs GRC is maturing into a enterprise solution, but still suffers from fractured perspectives. Operational ? Users should start by determining functional areas and use cases that stand to benefit most. Financial? Enterprise? Legal? Organizations can then map out where core GRC capabilities can support their business processes. IT Security? Core GRC Capabilities Identify & Analyze Risks Set Controls ©2013 Blue Hill Research. All Rights Reserved. Monitor Identify Vulnerabilities Respond to incidents Report
The “Success Factors” of GRC Minimize exposure Reduce Compliance Cost Recognize Opp./Risk Executive Finance Maintain Data Security Technology Technology Remove Silos Reduce redundancy/complexity Line of Business LOB Reduce time spent on compliance tasks ©2013 Blue Hill Research. All Rights Reserved. Increase profile in organization
Key Themes to Consider Roll-up of “point” GRC to enterprise GRC Compliance as a C-suite initiative Risk agility and intelligence Data privacy and security Social media risk Anti-bribery, anti-laundering, and anti-terror compliance ©2013 Blue Hill Research. All Rights Reserved.
Thank you! To join the conversation, follow us on Phone: +1 (617) 624-3600 ©2013 Blue Hill Research. All Rights Reserved. Contact Sales: sales@bluehillresearch.com Contact Research: research@bluehillresearch.com 1

More Related Content

PPTX
Governance, risk and compliance framework
Ceyeap
 
PPTX
What is GRC – Governance, Risk and Compliance
BOC Group
 
PPT
It governance
Mahetab Khan
 
PPTX
Governance risk and compliance
Magdalena Matell
 
PPTX
Grc governance, risk management & compliance
HR Globe Consulting
 
PPTX
Governance, Risk & Compliance Management Solution
Rishabh Software
 
PDF
GRC - Isaca Training 16.9.2014
Paul Simidi
 
PPTX
Presentation techniques and presentation style
Osama Shah
 
Governance, risk and compliance framework
Ceyeap
 
What is GRC – Governance, Risk and Compliance
BOC Group
 
It governance
Mahetab Khan
 
Governance risk and compliance
Magdalena Matell
 
Grc governance, risk management & compliance
HR Globe Consulting
 
Governance, Risk & Compliance Management Solution
Rishabh Software
 
GRC - Isaca Training 16.9.2014
Paul Simidi
 
Presentation techniques and presentation style
Osama Shah
 

What's hot (20)

PDF
Governance, Risk, and Compliance Services
Capgemini
 
PDF
Governance Risk Management and Compliance (GRC)
Seta Wicaksana
 
PPTX
it grc
9535814851
 
PDF
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Resolver Inc.
 
PDF
Bcp drp
aqel aqel
 
PDF
Cisa domain 3
ShivamSharma909
 
PDF
Compliance framework
Manoj Agarwal
 
PDF
ISO 22301 Business Continuity Management
Ramiro Cid
 
PPTX
Awareness iso 22301 danang suryo
Danang suryo Wardhono
 
PPTX
Business Continuity Planning Presentation
The Chamber For a Greater Chapel Hill-Carrboro
 
PPSX
GRC Governance, Risk mgmt. & Compliance Executive
Max Neira Schliemann
 
PDF
Integrated GRC
Transcendent Group
 
PPTX
Information Security Governance and Strategy
Dam Frank
 
PPT
Business Continuity Workshop Final
Bill Lisse
 
PDF
ISO 22301: The New Standard for Business Continuity Best Practice
MissionMode
 
DOCX
Iso 27001 2013 Standard Requirements
Uppala Anand
 
PDF
Assessing the impact of a disruption: Building an effective business impact a...
Bryghtpath LLC
 
PPTX
27001 awareness Training
Dr Madhu Aman Sharma
 
PPTX
Business continuity management per ISO 22301 - a certification training cour...
Mart Rovers
 
PDF
IT Governance
Carlos Chalico
 
Governance, Risk, and Compliance Services
Capgemini
 
Governance Risk Management and Compliance (GRC)
Seta Wicaksana
 
it grc
9535814851
 
Enterprise Risk Management - Aligning Risk with Strategy and Performance
Resolver Inc.
 
Bcp drp
aqel aqel
 
Cisa domain 3
ShivamSharma909
 
Compliance framework
Manoj Agarwal
 
ISO 22301 Business Continuity Management
Ramiro Cid
 
Awareness iso 22301 danang suryo
Danang suryo Wardhono
 
Business Continuity Planning Presentation
The Chamber For a Greater Chapel Hill-Carrboro
 
GRC Governance, Risk mgmt. & Compliance Executive
Max Neira Schliemann
 
Integrated GRC
Transcendent Group
 
Information Security Governance and Strategy
Dam Frank
 
Business Continuity Workshop Final
Bill Lisse
 
ISO 22301: The New Standard for Business Continuity Best Practice
MissionMode
 
Iso 27001 2013 Standard Requirements
Uppala Anand
 
Assessing the impact of a disruption: Building an effective business impact a...
Bryghtpath LLC
 
27001 awareness Training
Dr Madhu Aman Sharma
 
Business continuity management per ISO 22301 - a certification training cour...
Mart Rovers
 
IT Governance
Carlos Chalico
 
Ad

Viewers also liked (20)

PPTX
Blue Hill Research: Managing Mobile Now and in the Future
3Sixty Insights
 
PPTX
Hurricane Preparedness for Business Continuity - GRC Learning Series
peak10datacentersolutions
 
KEY
Mobile Apps 101
MotionMobs
 
PPTX
Ourschool
Maribel Lopez
 
PDF
Construyendo la reputacion corporativa desde el principio
Pedro Antonio García López
 
PDF
Presentation encuesta
Pedro Antonio García López
 
PPTX
The analytic hero's journey
3Sixty Insights
 
PDF
Shopper insights Tracking
Pedro Antonio García López
 
PPTX
Food Safety Webcast: Allergen Management
Foodservice Equipment & Supplies Magazine
 
PPTX
Presentation1 karen-mc-clintock
MilliCanada
 
PDF
CMU Portugal inRes Initiative Presentation April 2014
CMUPortugal_
 
PPTX
The Analytic Hero’s Journey
3Sixty Insights
 
PPTX
Research guides tour (February 2016)
lis02215
 
PDF
201502 cmu portugal_highlights
CMUPortugal_
 
PPTX
Why AWS's Redshift is a Game Changer
3Sixty Insights
 
PPTX
Library website features (February 2016)
lis02215
 
PPTX
10 Things About the Library Website
lis02215
 
PPTX
Naperville north tech workshop day 1
joeewilson
 
PPT
Ch4 1 v1
bhagavanprasad
 
PPT
Ch3 5 v1
bhagavanprasad
 
Blue Hill Research: Managing Mobile Now and in the Future
3Sixty Insights
 
Hurricane Preparedness for Business Continuity - GRC Learning Series
peak10datacentersolutions
 
Mobile Apps 101
MotionMobs
 
Ourschool
Maribel Lopez
 
Construyendo la reputacion corporativa desde el principio
Pedro Antonio García López
 
Presentation encuesta
Pedro Antonio García López
 
The analytic hero's journey
3Sixty Insights
 
Shopper insights Tracking
Pedro Antonio García López
 
Food Safety Webcast: Allergen Management
Foodservice Equipment & Supplies Magazine
 
Presentation1 karen-mc-clintock
MilliCanada
 
CMU Portugal inRes Initiative Presentation April 2014
CMUPortugal_
 
The Analytic Hero’s Journey
3Sixty Insights
 
Research guides tour (February 2016)
lis02215
 
201502 cmu portugal_highlights
CMUPortugal_
 
Why AWS's Redshift is a Game Changer
3Sixty Insights
 
Library website features (February 2016)
lis02215
 
10 Things About the Library Website
lis02215
 
Naperville north tech workshop day 1
joeewilson
 
Ch4 1 v1
bhagavanprasad
 
Ch3 5 v1
bhagavanprasad
 
Ad

Similar to GRC Fundamentals (20)

PDF
GRC Strategies in a Business_ Trends and Challenges.pdf
basilmph
 
PDF
Applying risk management_to_your_business_continuity_management_efforts
Subhajit Bhuiya
 
PPTX
7 Grc Myths Webinar 20110127 Final (2)
GBBLUME
 
PDF
13 Top GRC Tools for an Integrated Governance, Risk and Compliance Strategy
QuekelsBaro
 
PDF
Managing the Complexities of Governance, Risk & Compliance Requires
WNS Global Services
 
PPT
SLVA - Developing an IT GRC Strategy
SLVA Information Security
 
PDF
Streamlining Identity and Access Management through Unified Identity and Acce...
happiestmindstech
 
PPTX
Information Rich, Knowledge Poor: Overcoming Insurers’ Data Conundrum
Deloitte United States
 
PPTX
Analytics for manufacturers: The three-minute guide
Deloitte United States
 
PPT
Ags001 Wilhoit 091707
Dreamforce07
 
DOCX
task 1
BIBEKCHAUDHARYBScHon
 
PDF
ADP Human Capital Insights Magazine - Volume 2
Mark Schmitt
 
PDF
Risk & Advisory Services: Quarterly Risk Advisor Feb. 2016
CBIZ, Inc.
 
PPTX
Tech M&A Monthly - What To Do When You're Approached - December 2013
Corum Group
 
PPT
How It All Ties Together Sun Idm Roadshow For Sun
vijaychn
 
PDF
Improve success DevOps
Abhishek Sood
 
PPTX
Innovatively Managing the Business Process to Create Excellence
Tata Consultancy Services
 
PPTX
Concept of Governance - Management of Operational Risk for IT Officers/Execut...
Amity University | FMS - DU | IMT | Stratford University | KKMI International Institute | AIMA | DTU
 
PPTX
Big data governance as a corporate governance imperative
Guy Pearce
 
PDF
(CISOPlatform Summit & SACON 2024) GRC.pdf
Priyanka Aash
 
GRC Strategies in a Business_ Trends and Challenges.pdf
basilmph
 
Applying risk management_to_your_business_continuity_management_efforts
Subhajit Bhuiya
 
7 Grc Myths Webinar 20110127 Final (2)
GBBLUME
 
13 Top GRC Tools for an Integrated Governance, Risk and Compliance Strategy
QuekelsBaro
 
Managing the Complexities of Governance, Risk & Compliance Requires
WNS Global Services
 
SLVA - Developing an IT GRC Strategy
SLVA Information Security
 
Streamlining Identity and Access Management through Unified Identity and Acce...
happiestmindstech
 
Information Rich, Knowledge Poor: Overcoming Insurers’ Data Conundrum
Deloitte United States
 
Analytics for manufacturers: The three-minute guide
Deloitte United States
 
Ags001 Wilhoit 091707
Dreamforce07
 
task 1
BIBEKCHAUDHARYBScHon
 
ADP Human Capital Insights Magazine - Volume 2
Mark Schmitt
 
Risk & Advisory Services: Quarterly Risk Advisor Feb. 2016
CBIZ, Inc.
 
Tech M&A Monthly - What To Do When You're Approached - December 2013
Corum Group
 
How It All Ties Together Sun Idm Roadshow For Sun
vijaychn
 
Improve success DevOps
Abhishek Sood
 
Innovatively Managing the Business Process to Create Excellence
Tata Consultancy Services
 
Concept of Governance - Management of Operational Risk for IT Officers/Execut...
Amity University | FMS - DU | IMT | Stratford University | KKMI International Institute | AIMA | DTU
 
Big data governance as a corporate governance imperative
Guy Pearce
 
(CISOPlatform Summit & SACON 2024) GRC.pdf
Priyanka Aash
 

More from 3Sixty Insights (9)

PPTX
The Future of Finance in a World of Global Digital Transformation
3Sixty Insights
 
PPTX
The Analytic Hero's Journey
3Sixty Insights
 
PPTX
The Foundations of Social Media Risk Management
3Sixty Insights
 
PPTX
ROI of A Liberated Data Analyst
3Sixty Insights
 
PPTX
Achieving Better Credit and Collections with FinancialForce Accounting & Chatter
3Sixty Insights
 
PPTX
Choosing AirWatch by VMware as a BYOD solution - A Blue Hill Research Case Study
3Sixty Insights
 
PPTX
Investing in the Front End of Compliance
3Sixty Insights
 
PPTX
SMAC talk for the enterprise
3Sixty Insights
 
PPTX
Microsoft, Innovation, and its HR Failure
3Sixty Insights
 
The Future of Finance in a World of Global Digital Transformation
3Sixty Insights
 
The Analytic Hero's Journey
3Sixty Insights
 
The Foundations of Social Media Risk Management
3Sixty Insights
 
ROI of A Liberated Data Analyst
3Sixty Insights
 
Achieving Better Credit and Collections with FinancialForce Accounting & Chatter
3Sixty Insights
 
Choosing AirWatch by VMware as a BYOD solution - A Blue Hill Research Case Study
3Sixty Insights
 
Investing in the Front End of Compliance
3Sixty Insights
 
SMAC talk for the enterprise
3Sixty Insights
 
Microsoft, Innovation, and its HR Failure
3Sixty Insights
 

Recently uploaded (20)

PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
PDF
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
PPTX
A Presentation on Artificial Intelligence
memembruh336
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
PDF
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
PPTX
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PDF
Encapsulation theory and applications.pdf
gurumoop
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PPTX
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
PDF
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PDF
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
PDF
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
PDF
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
PDF
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
Machine learning based COVID-19 study performance prediction
IAESIJAI
 
7 ChatGPT Prompts to Help You Define Your Ideal Customer Profile.pdf
SOFTTECHHUB
 
A Presentation on Artificial Intelligence
memembruh336
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
Per capita expenditure prediction using model stacking based on satellite ima...
IAESIJAI
 
Advanced methodologies resolving dimensionality complications for autism neur...
IAESIJAI
 
Understanding_Digital_Forensics_Presentation.pptx
ImranKhan423233
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
Encapsulation theory and applications.pdf
gurumoop
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PA Analog/Digital System: The Backbone of Modern Surveillance and Communication
AVTRON Technologies LLC
 
Peak of Data & AI Encore- AI for Metadata and Smarter Workflows
Safe Software
 
Approach and Philosophy of On baking technology
30anthuong17
 
Bridging biosciences and deep learning for revolutionary discoveries: a compr...
IAESIJAI
 
Mobile App Security Testing_ A Comprehensive Guide.pdf
flufftailshop
 
Shreyas Phanse Resume: Experienced Backend Engineer | Java • Spring Boot • Ka...
SHREYAS PHANSE
 
NewMind AI Monthly Chronicles - July 2025
NewMind AI
 

GRC Fundamentals

  • 1. Governance, Risk, & Compliance Fundamentals David Houlihan Principal Analyst Blue Hill Research ©2013 Blue Hill Research. All Rights Reserved. ©2013 Blue Hill Research. All Rights Reserved.
  • 2. Need for GRC Solutions is Growing, But Implementation is Challenging Compliance becomes top risk priority of Directors Increasing market / business volatility Demand for Solutions Regulatory regimes more complex Agencies more aggressive about enforcement The frequency and pain of data breaches is growing Information and function silos results in overlooked opportunities and exposures Sorting out GRC vendors visions and value propositions Challenges to Implementation ©2013 Blue Hill Research. All Rights Reserved. Difficulty conceptualizing ROI Unclear how to prioritize implementation strategies to maximize organizational benefit
  • 3. Map GRC Capabilities to Organizational Needs GRC is maturing into a enterprise solution, but still suffers from fractured perspectives. Operational ? Users should start by determining functional areas and use cases that stand to benefit most. Financial? Enterprise? Legal? Organizations can then map out where core GRC capabilities can support their business processes. IT Security? Core GRC Capabilities Identify & Analyze Risks Set Controls ©2013 Blue Hill Research. All Rights Reserved. Monitor Identify Vulnerabilities Respond to incidents Report
  • 4. The “Success Factors” of GRC Minimize exposure Reduce Compliance Cost Recognize Opp./Risk Executive Finance Maintain Data Security Technology Technology Remove Silos Reduce redundancy/complexity Line of Business LOB Reduce time spent on compliance tasks ©2013 Blue Hill Research. All Rights Reserved. Increase profile in organization
  • 5. Key Themes to Consider Roll-up of “point” GRC to enterprise GRC Compliance as a C-suite initiative Risk agility and intelligence Data privacy and security Social media risk Anti-bribery, anti-laundering, and anti-terror compliance ©2013 Blue Hill Research. All Rights Reserved.
  • 6. Thank you! To join the conversation, follow us on Phone: +1 (617) 624-3600 ©2013 Blue Hill Research. All Rights Reserved. Contact Sales: sales@bluehillresearch.com Contact Research: research@bluehillresearch.com 1