Governance, Risk and Compliance (GRC) represents a business oriented approach to establishing ownership and accountability throughout the organization to improve decision making.
While this may seem straightforward, establishing a GRC program within an organization is not a simple task. It is also not a new concept. Companies have been focused on improving compliance and managing risk for years. Since GRC programs have many moving parts, organizations are implementing an overarching vision of how things fit together to maximize value.
This reference guide provides:
- A backdrop for an organization to plan out its strategy
- Visual presentation of the GRC framework
- Guiding principles and objectives behind an effective program