From Finding and Fixing Problems to Compliance Risk Management  Regulations, ethics, and integrity are challenging the organization like never before. Governments are increasing scrutiny of organizations, stakeholders demand transparency, clients want assurance the organization is reputable and upholds their values, and business partners require commitments to compliance and ethics. The role of the chief ethics and compliance officer (CECO) has…

The distributed and dynamic nature of business makes ethics and compliance a challenge. How does an organization validate it is current with legal, regulatory, and other obligations within an ever-changing business environment? Global compliance in the context of a complex and dynamic business environment is particularly challenging as organizations face broadening anti-corruption laws and regulations. Ultimately, the best offense is…

The role of internal audit is expand- ing as it guides the enterprise be- yond traditional attitudes about financial risk management, risk mitiga- tion, and monitoring and toward evalu- ating a broader spectrum of compliance activities. Today’s auditor must have a full understanding of the risks the company faces and how they relate to each other, and needs to rely…

Compliance 360 is a GRC vendor that Corporate Integrity has researched, evaluated, and reviewed with application users. Compliance 360 delivers on the vision of GRC with a robust technology and information architecture to enable risk and compliance processes that are agile, efficient, and effective in managing regulatory requirements, enterprise risk, and obligations. Compliance 360 is a provider of software applications,…

The mismanagement of policies has grown exponentially within organizations with the proliferation of collaboration and document sharing software such as Microsoft SharePoint. These solutions to their credit as well as downfall enable anyone to post a policy. Organizations end up with policies scattered on dozens of different internal Web sites and file shares, with no defined audit trails or accountability…

Organizations face a complex environment of risk, internally and externally. Geopolitical, financial/treasury, economic, operational, legal, and regulatory environments produce compound risks for organizations to manage. Many organizations are learning that these risks often interrelate to create a much larger risk environment than each independent silo is aware of. What may seem an insignificant IT risk in one area of the…

In many organizations, the role of the chief ethics and compliance officer (CECO)1 is taking on greater importance as he or she guides the enterprise beyond traditional concepts of being the compliance “cop” to being a champion of corporate values, culture, and ethics. This requires that the CECO be an integrated role in the organization’s proactive governance, risk and compliance (GRC) capabilities. Today’s CECO must have a full…

In many organizations, the role of the CLO is growing in significance and guides the enterprise beyond putting out fires on legal matters. It is expanding into a proactive role in legal risk management and preventative law, becoming a critical pillar in an organization’s risk management strategy. This requires that the CLO be an integrated role in the organization’s proactive governance, risk management, and compliance (GRC) capabilities. Today’s…

Organizations today face unimaginable challenges as they do business in an increasingly complex global marketplace. They need to step back, get a good look at the challenges and develop an integrated approach to ensuring effective governance, managing risks, and optimizing performance while addressing compliance requirements throughout the enterprise. The result: what OCEG calls Principled Performance®. A number of key business…

Given the media phenomenon of WikiLeaks alongside widespread coverage of exposure of sensitive corporate information, more and more enterprises are waking up to the risks of unstructured content — both within their organization, such as internal SharePoint sites or other file shares, and on the Web. Most large enterprises today have risk, compliance, and privacy policies in place to govern…