GRC

Governance, Risk and Compliance (GRC) is the integrated collection of capabilities that enable an organization to reliably achieve objectives, address uncertainty and act with integrity.

GRC as an acronym denotes governance, risk, and compliance — but the full story of GRC is so much more than those three words.

The acronym GRC was invented by the OCEG (originally called the “Open Compliance and Ethics Group”) membership as a shorthand reference to the critical capabilities that must work together to achieve Principled Performance — the capabilities that integrate the governance, management and assurance of performance, risk, and compliance activities.

This includes the work done by departments like internal audit, compliance, risk, legal, finance, IT, HR as well as the lines of business, executive suite and the board itself.

LEARN AND ENGAGE

Connect with the TrustCommunity

Explore the TrustCommunity forums, ask questions, and learn from your peers.

Topics: 2

Replies: 0

OR