Request A Demo!

Author - Rajesh Unadkat

Vendor risk management strategy

Three Reasons to Establish a Vendor Risk Management Strategy

Budgetary pressures and evolving technology are pushing more businesses and organizations to use third party vendors for a variety of IT and business process functions. While often convenient and financially helpful, this practice also opens up companies to risks regarding regulatory compliance and data security. Establishing a vendor risk management strategy can help organizations minimize their exposure to losses related to the use of third party vendors. For business leaders still weighing whether vendor risk management software and planning are [...]

GRC compliance

Three IT Areas for SOX Compliance

The Sarbanes-Oxley Act doesn’t just affect your company’s accounting department, SOX compliance is also critical to the IT department. IT managers need to be aware of SOX compliance issues and what they need to do to avoid running afoul of the law. SOX was passed in 2002, largely in response to corporation accounting scandals that had rocked the financial world in the early 00s. In addition to creating rules regarding accounting practices and corporate disclosures, the act also regulates how [...]

Internal audit software

Four GRC Trends to Watch for 2017

The new year is shaping up to be an exciting time for governance, risk management, and compliance professionals as globalization, technology, and demographic changes present new challenges and opportunities. Looking ahead for 2017, these trends have been identified as key areas of interest for GRC professionals: Cyber vulnerability – While IT departments have the lead role in tackling the threats posed by hacking and other computer issues, risk management, and compliance officers have an important role in accessing threats and [...]

GRC Tech Trends

Three GRC Tech Trends for 2017

Governance, risk management, and compliance constantly evolve, and 2017 will bring new challenges causing GRC professionals to race to keep up with the pace of change. Some of the most interesting trends for 2017 appear, not surprisingly, to be in the area of technology.  GRC solutions experts have been running ragged to keep up with the curveballs new technologies and applications can provide (the use of personal smartphones and devices in the office, cloud computing solutions, and more). The pace will [...]

Why GRC on the Salesforce ecosystem?

Aruvio is proud to be part of the Salesforce Ecosystem: Enabling 1.9 Million New Jobs and $389 Billion in New Revenue Over the Next Five Years, see here. The rate of cloud computing adoption growth is good. However the Salesforce cloud platform’s agility, reliability, scalability, security, and mobility is helping the Salesforce Ecosystem to grow at a higher rate than the overall cloud computing adoption growth. Built in enterprise class software features such as its: • flexible security model, • extensibility, • notifications and [...]

Head off supply chain disruption

Potential supply chain disruption is a tangible risk.  This is not a matter of if, but when, how bad and what are your options? Your supply chain risk management system must function as an early warning system and to manage those risks as they arise. Risks include: Regulatory compliance; Information privacy and security; Contract obligations; Employee and third-party fraud; Corporate culture; Change management Managing an agile and comprehensive supply chain risk management system is tough. You must constantly ask, “How can [...]

Proving the need for GRC improvements

Proving the need for GRC improvements Constructing an ROI business case for GRC is tough, but it can get you budget. What follows is an approach to calculating Annual Loss Expectancy. While a bit of a scare tactic (FUD fear, uncertainty and doubt), it is a legitimate approach. It can help with senior management if presented in terms of protecting profitability. Annualized Loss Expectancy (ALE) is the expected monetary loss anticipated for an asset due to a risk during one year. [...]

Controversy, Compliance and Changes in Fair Labors Standard Act (FLSA)

On May 18th, an update to the Fair Labors Standard Act (FLSA) was published, where any employee making less than $47,476 will now be classified as non-exempt.  Employers have until Dec 1st, 2016 to comply.  Obviously this new ruling will undoubtedly cause headaches for your compliance and audit professionals.    ‘Covered employers’ who violate this law can be subject to heavy fines, litigation, and/or audits.  Here are ways to mitigate your organization’s risks from the new FLSA: Audit employees salary [...]

The Case for Continuous Compliance

The challenge of running effective GRC programs has grown as the amount of information these programs track has exploded. This challenge has been made more difficult by the shift in many organizations’ compliance programs into more of risk management or avoidance program. What was previously viewed as a form of auditing or reporting is now seen as a hedge against risk. This GRC model requires a more intensive sampling of information that was done previously. Unfortunately, with many companies running [...]

Employee Policy and SOP Management

Going Nuclear on Employee Policy & SOP Management

One of the major challenges for organizations in managing GRC is that GRC is not really an application. It is a category of a lot of different applications associated with the adherence, tracking, remediation, and reporting of policies within an organization. Historically, these applications were managed as independent applications. Regulatory compliance was compliance, information security, safety programs, quality management, HR policy management, etc. But, as these programs have evolved and broadened, as well as, the increased continuous management; organizations are [...]

Let Us Help Your Business

Request A Demo!