Governance, risk management and compliance are three terms that describe a wide range of activities within an organization. Unfortunately, the people and departments touched by those activities all too often live on separate islands, seeing one another from their respective shores, but rarely expending the effort to paddle across the waters to explore the resources, processes and systems that others use to achieve similar-and often synergistic-goals.rnDespite a growing awareness that governance, risk management and compliance (GRC) efforts must be integrated to achieve optimal organizational performance, there is little recognition of the role that IT can and should play in creating that convergence. Indeed, IT can effectively build bridges from island to island, connecting the company's resources, processes and systems to reduce redundancy; fill in the gaps; and provide managers, executives and board members with actionable information to drive success.
展开▼
