Jeff Jinnett: Towards a Structured GRC Taxonomy

Although governance, risk management and compliance laws and regulations may vary greatly depending on the jurisdiction, issuing authority, regulator and target industry, there appear to be certain common GRC issues that can be used to group mandates into categories. For example, the following nine GRC issues (with examples) may represent a useful taxonomy for the…

0

Jeff Jinnett: IT Approaches to State Law Preemption Under the Proposed Consumer Financial Protection Agency

On June 17, 2009, the U.S. Department of the Treasury issued a white paper entitled “Financial Regulatory Reform – A New Foundation: Rebuilding Financial Supervision and Regulation”(1).  This document sets forth the vision of the Obama administration for a new federal regulatory regime for the U.S. financial services industry. One proposed change is to create…

0

Jeff Jinnett: How to Take a Holistic Approach to Governance, Risk Management and Compliance - part 2

In the last blog, we were discussing ways to copy with today’s new business and regulatory challenges.  Again, you might want to consider adopting a “holistic” GRC approach that can help you develop multi-purpose, reusable GRC solutions.  For example, under such a holistic approach, a company could (a) identify the most important legal and policy…

0

Jeff Jinnett: How to Take a Holistic Approach to Governance, Risk Management and Compliance - part 1

Today’s increasingly complex business landscape is matched by an increasingly challenging governance, risk management and compliance (GRC) landscape. U.S. multi-national companies are faced with a bewildering array of international, U.S. federal and state regulations, depending on the nature of the company’s business. These regulations can include the EU privacy directive, the Basel II Accord, the…

0