From SOX to GRC: a CRO’s Perspective
John Kelly 270004J7VQ firstname.lastname@example.org | | 0 Comments | 103 Visits
The ultimate goal for many GRC professionals is to arrive at a converged GRC program with a supporting technology platform. We often tell our customers that it is important to take a phased approach when planning an enterprise deployment of a GRC management solution and that they should set expectations and goals for each phase as their risk management program matures.
For instance, implementing an effective and non-disruptive Sarbanes-Oxley initiative can do more than just meet regulatory compliance. In fact, it can play a key role in moving to a successful GRC initiative. Eric Krell, a contributing writer to Business Finance magazine who focuses on GRC, wrote in a recent blog that
Eric recently interviewed Dun & Bradstreet’s CRO Charles Pavlounis who concluded in Eric’s blog that ERM success hinges on "getting SOX [compliance] to be something that is not disruptive, that is almost embedded in the core DNA of the company." To learn more about D&B’s ERM program, look for Eric’s interview with Charles and the D&B case study in the December issue of Business Finance.