GRC Articles

Latest Articles

March 16, 2013 by: James Bone Categories: GRC Articles OCEG Red Book

You must be logged in to view this document. Click here to login

BlueBookimage

OCEG, the Open Compliance & Ethics Group has developed standards for the structure of GRC (Governance, Risk & Compliance).  Although initially focused on GRC as a risk practice OCEG has shifted focus to a new concept called Principled Performance.  OCEG has modified Enterprise Risk into a Principled Performance model that is inclusive of the COSO Enterprise Risk framework.  This shift in focus appears to imply that risk management is responsible for firm performance.

January 17, 2013 by: James Bone Categories: GRC Articles The Forrester Wave tm: Cloud Strategies of Online Collaboration Software Vendors, Q3 2012

You must be logged in to view this document. Click here to login

In Forrester’s 38-criteria evaluation of the cloud strategies of online collaboration software vendors, we identified eight significant collaboration services providers — Box, Cisco ystems, Citrix Online, Google, IBM, Microsoft, salesforce.com, and Yammer — in the category and researched, analyzed, and scored them. This report details our findings about how well each vendor fulfills our criteria for constructing an online collaboration service and where they stand in relation to each other. Given the relative immaturity of this market and the nature of client questions about it, Forrester chose to evaluate the overall strategies of these providers across criteria like global footprint, service-level agreements, mobile support, enterprise readiness, and more. This report and associated Excel model highlight the key criteria CIOs and their staffs should evaluate when looking at prospective providers of online collaboration services.

March 26, 2012 by: James Bone Categories: GRC Articles GRC 360: Chart the Course

As risks become more diverse and interrelated, as laws and regulations become more complicated and as boards and executives become more accountable, the activities and controls associated with governance, risk management and compliance (GRC ) have expanded accordingly, becoming extraordinarily complex themselves. In spite of that complexity, today’s GRC activities are largely manual, not standardized and not well integrated into core business processes. The resulting situation puts organizations at greater risk and makes it difficult and costly for the CFO and other executives to do their jobs.

You must be logged in to view this document. Click here to login

 

March 14, 2012 by: James Bone Categories: GRC Articles Gartner’s Magic Quadrant

Magic Quadrants and MarketScopes offer visual snapshots of a market’s direction, maturity and participants. Understanding our research methodology will help you use these models effectively when choosing a product or service, or managing a vendor relationship.

You must be logged in to view this document. Click here to login

February 15, 2012 by: James Bone Categories: GRC Articles The State of Medical Imaging Archiving

You must be logged in to view this document. Click here to login

December 28, 2011 by: James Bone Categories: GRC Articles The Forrester Wave™: Enterprise Governance, Risk, And Compliance Platforms, Q4 2011[PDF]

You must be logged in to view this document. Click here to login

by: James Bone Categories: GRC Articles GRC Capability Model “Red Book” 2.0[PDF]

You must be logged in to view this document. Click here to login

by: James Bone Categories: GRC Articles Building a Business Case for GRC[PDF]

You must be logged in to view this document. Click here to login

by: James Bone Categories: GRC Articles A New Approach for Managing Operational Risk[PDF]

You must be logged in to view this document. Click here to login

by: James Bone Categories: GRC Articles Why COSO is Flawed[PDF]

You must be logged in to view this document. Click here to login