Category Archives: GRC Technology Implementation

Strategies for Using On-Screen Help to Enhance Your GRC Data

One of the risks you may or may not be tracking within your GRC program is the data quality within your online Governance, Risk and Compliance (GRC) tool. The reports and metrics within your GRC system hinge on the data provided by your end users. Mediocre, or worse, inaccurate data can have far reaching impacts across the enterprise. If you prioritize tasks and make risk and compliance decisions based off the data within your tool, you need to have plans and strategies in place for vetting and reviewing that data. Continue reading

Posted in GRC Technology Implementation, Risk Management | Tagged | Leave a comment

Be Wary of Over-Automating GRC

“Convenience” drives so much of the innovation in the consumer market, often removing nearly all of the human interaction (or thought process) required to do a task. For example, consider everyone’s favorite robotic vacuum, the “Roomba.” For those unfamiliar, a Roomba is a dinner plate-sized robot that you set on your floor and power on. Once activated, it systematically patrols your floors, vacuuming up any dirt and/or dust bunnies it comes across; no human intervention necessary. Another example would be espresso machines – a vital piece of equipment in any coffee house. While this technological marvel allows us to procure our lattes and caramel macchiatos at near breakneck speed with the push of a few buttons, if the machine broke, would the barista know how to prepare an espresso manually (gasp!)? Continue reading

Posted in GRC Consulting, GRC Technology Implementation | Tagged | 2 Comments

3 Tips for Better System-Generated Emails

There are blogs and even books solely devoted to helping me manage the deluge of incoming messages that causes my inbox to swell beyond comprehension. However, whether you’re a “touch it once” disciple, a “batch processor,” or something equally profound (such as the Pomodoro technique) these approaches only address the in-bound side of email. If you’re a GRC system administrator or a GRC process owner, you may be one of the culprits of this email overload. Continue reading

Posted in GRC Consulting, GRC Technology Implementation | Tagged | Leave a comment

Getting Our House in Order, for the Holidays

Just like the opening scene from the holiday classic National Lampoon’s Christmas Vacation, our six-person family recently set out to find our family Christmas tree. As we were driving to the tree farm, we could actually feel the sense of excitement coming from the back seats of mini-van. The kids were bouncing around, barely contained by their seat belts, volume was high (as usual) and, amazingly, everyone was getting along. Continue reading

Posted in GRC Consulting, GRC Technology Implementation | Tagged | Leave a comment

Decision 2012: GRC Design, Part 2

In my previous post, I described the need to understand the audiences using your GRC technology. While much attention gets focused on key management stakeholders, too often we forget to view our GRC systems from an end user’s perspective. A poorly automated process leads to a disenchanted end user and can potentially jeopardize the quality of your GRC metrics. This week I’m concluding my discussion, as promised, on GRC technology design by offering some specific design tips and approaches for the GRC professional. (Seeing that we’re just a week past election day I’m not about to break any campaign promises!) As you finish out your 2012 initiatives and scope your plans for the upcoming year, take a moment to review the following four tips. Continue reading

Posted in GRC Technology Implementation | Tagged | 1 Comment

Decision 2012: GRC Design, Part 1

We’ve reached the end (finally) of the US election season, and – speaking for the entire OrangePoint team – I hope all our American friends exercised their right to vote. After months of attack advertisements, stacks of campaign mail and door-to-door volunteers, I’m looking forward to things getting back to normal. Continue reading

Posted in GRC Technology Implementation | Tagged | 1 Comment