Compliance

Overheard: There’s no killer app for GRC software

Most people assume that so-called GRC software–governance, risk and compliance–will continue to gather steam, as big boys like Oracle and SAP continue their marketing. It makes sense to automate compliance and risk issues, but the reality of this nascent field is that there really isn’t a single point solution. John Hagerty, CFOs face complex GRC software decisions

Video: Sarbanes-Oxley explained?

Steven Zelin, the Singing CPA, sings a rather clever rendition of “Happy Birthday” to Sarbanes-Oxley.

Video: Good explanation of change silos

 I’m not plugging Serena Dimensions. I am plugging their video — they did a nice job explaining some of the issues surrounding change management.

Overheard: Governance, risk and compliance in a single $400,000 package

That integration wasn’t quite there when we first implemented the software. We were going on faith regarding the vendor’s promises. John Wheeler, SunTrust Banks Inc.

This quote came from an article in CFO magazine by John Goff called The Emergence of Convergence.  It’s a very well-written analysis of an emerging software genre called GRC (governance, risk and compliance managed with one application.)  I really recommend you make time to read it.

My other favorite quote from this article: “Application vendors, who cling to marketing hooks the way cats cling to curtains, have been only too happy to cater to this desire [to converge software].

When I first read the quote from John Wheeler about “going on faith regarding the vendor’s promises,” I thought “uh oh.” But the vendor, OpenPages, came through. That’s reason enough to read the article.