Success in today’s dynamic business environment requires organizations to integrate, build and support business processes with an enterprise view of governance, risk management and compliance (GRC). Without an integrated view of risk and compliance, the scattered and nonintegrated approaches of the past fail and expose the business to unanticipated risk. In a mature GRC program, the organization has an integrated…

RSA Archer ERM Capability Analysis  RSA Archer is a solution provider in the GRC market that Corporate Integrity has researched and evaluated. Through an adaptable end-to-end offering RSA Archer eases the burden by delivering operational effectiveness, efficiency, and agility to risk management processes. RSA Archer’s ERM module is ideally suited for organizations that need a platform to bring together distributed…

Corporate Policies in Disarray  Why Policy Matters  Policy defines boundaries for the behavior of individuals or roles, business processes, relationships, and systems. At the highest level, policy starts with a code of conduct, establishes ethics and values to extend across the enterprise, and authorize policies to govern the entire organization. These filter down into specific policies for business units, departments…

   Health Care Burdened by Risk and Compliance Demands  The health care industry is facing trauma around compliance risk as it scrambles to approach a massive pandemic of regulations, liability and audits. A load of regulations, liability and business exposure bears down on the health care industry from all directions. Health care organizations are burdened by the proliferation of legal…

   Electric Utilities Burdened by Risk and Compliance Demands  Electric power utilities are under increasing pressure for accountability for reliability, and protection of infrastructure and transmission. An increasingly interconnected world means utilities must consider emissions and global warming concerns, corporate social responsibility, capacity and future sustainability of power, and the protection of critical infrastructure. Calls to manage risk are forcing…

 Who Defines the Corporation’s Values and Ethics?  Integrity is a mirror that reveals the truth about a corporation. Corporate reports, filings, and stakeholder communications may say one thing, when in reality the corporation is doing something else. Integrity is violated when corporate policies and procedures are thrown out the window. For a corporation to have integrity, it must have an…

From Finding and Fixing Problems to Compliance Risk Management  Regulations, ethics, and integrity are challenging the organization like never before. Governments are increasing scrutiny of organizations, stakeholders demand transparency, clients want assurance the organization is reputable and upholds their values, and business partners require commitments to compliance and ethics. The role of the chief ethics and compliance officer (CECO) has…

The distributed and dynamic nature of business makes ethics and compliance a challenge. How does an organization validate it is current with legal, regulatory, and other obligations within an ever-changing business environment? Global compliance in the context of a complex and dynamic business environment is particularly challenging as organizations face broadening anti-corruption laws and regulations. Ultimately, the best offense is…

The role of internal audit is expand- ing as it guides the enterprise be- yond traditional attitudes about financial risk management, risk mitiga- tion, and monitoring and toward evalu- ating a broader spectrum of compliance activities. Today’s auditor must have a full understanding of the risks the company faces and how they relate to each other, and needs to rely…

Compliance 360 is a GRC vendor that Corporate Integrity has researched, evaluated, and reviewed with application users. Compliance 360 delivers on the vision of GRC with a robust technology and information architecture to enable risk and compliance processes that are agile, efficient, and effective in managing regulatory requirements, enterprise risk, and obligations. Compliance 360 is a provider of software applications,…