Governance | Research:

By Stephen Walker, Aberdeen Group

The steadily rising barrage of governmental, industry-specific, and internally imposed regulatory mandates, coupled with the potentially disastrous consequences to company image, brand value, and ultimately revenues that can result from a single instance of non-compliance, are forcing organizations to both re-calibrate their internal processes and controls and invest in services and solutions that enable the transition from reactive, fragmented, and manually-intensive compliance activities towards a proactive, comprehensive, and automated continuous compliance framework.

A new study commissioned by SAP, the world's largest business software company, draws on a survey conducted by Healthcare IT News and Healthcare Finance News to share strategies that will improve governance, compliance and business performance across today's healthcare organization.

Enterprise Management Associates, May 2008, Pages: 61

Description

In recent months, IT GRC has emerged as a unifying theme aligning the management of IT, IT risk and regulatory compliance with the priorities of the business. But what does IT GRC mean in a practical sense, to the IT organization charged with its success? In a survey of more than 200 professionals in both IT and non-IT fields complemented by focus interviews with real world practitioners, this study identifies the processes, practices and technologies most highly valued by high performers in IT GRC management.

Service-oriented architectures (SOAs) promise unlimited agility and organizational flexibility. However, achieving these benefits is entirely contingent upon the ability to effectively manage the SOA environment across the enterprise. This paper presents an overview of strategies and practices for governing the transformation to, and the evolution of, SOA.

Outake: This document is intended to assist members of the Financial Institution Shared Assessments Program and others in using the Agreed Upon Procedures and understanding how they relate to industry regulations, as well as to deepen their understanding of the program.

John Wiley and Sons Ltd, May 2008, Pages: 342

Description

Governance, risk, and compliance-these three big letters can add up to one giant headache. But GRC doesn't have to be a boil on your corporate behind. SAP GRC For Dummies untangles the web of regulations that confronts your company and introduces you to software solutions the not only keep you in compliance, but also make your whole enterprise stronger.

In this white paper, our authors discuss their tips for understanding compliance, monitoring its implementation and impact, best practice for ensuring successful compliance, and IT’s role. They also look to the future and the industry standards they believe will be coming soon.

By Aberdeen Group

The rise in importance of IT governance, risk management and compliance ("IT GRC") reflects the increasing recognition that the strategic value of IT lies not in the mere technology itself (which is generally accessible to everyone), but in how it is applied and managed most effectively. The point is not to be good at the process of compliance, or governance, or risk management for its own sake - the point is to harness IT more effectively in support of achieving business objectives and managing financial, strategic, and operational risks.