The Difference Between Compliance & Risk Management: What You Need to Know

Lots of people hear the terms compliance and risk management and assume the two terms are the same. While there is overlap between the two, it’s important to know the differences so you can assure your company is using each strategy to its full advantage. Let’s look at what each strategy is, how they differ, …

Risk Management or Compliance?

Is risk management taking a back seat to compliance? Risk management frameworks are often seen as a lower priority than the specific activities associated with compliance. In a busy commercial environment, it is easy to focus on complying with rules rather than implementing effective risk management. It is also easy to focus on a headline, …

Compliance Risk Management using MI

Management information (MI) to identify compliance related risks and issues within a financial services entity  can be wide-ranging.  Metrics such as KPIs and KRIs serve as risk management tools that can be used as an “early warning” signal, to address an issue before it increases in gravity.  MI can help uncover systemic issues and track …

Getting your GRC into the hands of decision makers

“Risk Culture – the values, beliefs, knowledge, attitudes and understanding about risk shared by a group of people with a common purpose.” Institute of Risk Management To successfully influence risk culture, we need great structural mechanisms or formal arrangements that support strong risk management practices in our systems, policies, procedures, and governance – and – …

Risk & Responsibility: Is Your Corporate Board Prepared?

Those of you who know me or have been students of mine know that I constantly rant about the supreme importance of knowing and understanding the client’s business, in order to intelligently comprehend and appreciate the risks the business faces. Well, the same goes for the board of directors. Obtaining an understanding of the company’s …

Artificial Intelligence: The Shifting Battlefield in the Cybersecurity Arms Race

Cybersecurity strategies need to change in order to address the new issues that Machine Learning (ML) and Artificial Intelligence (AI) bring into the equation. Although those issues have not yet reached crisis stage, signs are clear that they will need to be addressed – and soon – if cyberattackers are to be prevented from obtaining …