Considerations for GRC Initiatives

Considerations for GRC Initiatives

Dominic Vogel recently published an article for TechRepublic that highlights issues for organizations to consider: “Governance, risk, compliance: four things to ponder about GRC initiatives.” With IT often challenged to ‘do more with less’, GRC becomes a way to realize efficiencies both for cost and for business effectiveness. Aligning GRC under a unified framework can “eventually lead to an environment where you can accurately determine what security controls to implement, how to gauge their effectiveness, and how to optimally support those controls.”

These four issues to consider are:

  1. GRC as a collaborative effort, not one by IT alone, both in planning as well as execution and maintenance
  2. Having the same “GRC language” between IT and executives
  3. Proper planning
    • “What corporate policies do we want to manage, what risks do we want to be capable of assessing and responding to, and what compliance/regulatory requirements do we need to be able to monitor?”
  4. Finding the right GRC tool

Absolute Computrace can provide foundational support for all activities related to GRC for the endpoint. Learn more here.

Arieanna Schweber
Arieanna Schweber has been a part of the Absolute writing team since 2007. Arieanna was Canada’s first female professional blogger and has been professionally blogging since 2006 and has spoken at leading blogging conferences including BlogHer and Northern Voice. Arieanna has a joint degree in Business and Communications from Simon Fraser University and continues to build communities for Vancouver-based clients.

1 Comment

Leave a Comment