Enterprise Compliance Today

What is GRC and why use compliance management software?

Posted by Greg Carroll on Mon, Apr 17, 2017 @ 02:31 PM

When starting out on the Compliance Management journey, understanding the alphabet soup of acronyms can be confusing.  Here we try to explain the terms, what needs to be done, and need for compliance management software in the process.

Read More

Tags: corporate governance, Compliance Management, risk management

Compensating for SharePoint Document Control Deficiencies

Posted by Greg Carroll on Wed, Apr 05, 2017 @ 12:31 PM

The benefits of SharePoint as a content management system and information portal tool are indisputable.  With great search functionality and user definable portal pages SharePoint is now the leading Content Management solution chosen by most IT departments.

But what if your business demands strict document controls protocols, not just because it’s good practice but life depends on it?  Unfortunately there is generally a poor appreciation by IT departments of the importance of document control in mission critical business. 

Read More

Tags: Best practices, Quality Management, document control

What Donald Trump’s win tells us about Decision Bias

Posted by Greg Carroll on Sat, Nov 12, 2016 @ 09:36 AM

Just like the Brexit win 2 months ago, Donald Trump’s election as US President beggars belief but has some valuable lessons to learn from both a Risk Management and corporate governance perceptive.

Read More

Tags: corporate governance, risk management, risk identification, decision making

How to reduce Security Risk when moving to Cloud Computing

Posted by Greg Carroll on Wed, Nov 02, 2016 @ 10:51 AM

In my last article “Is Cloud based Risk Management worth the Risk?” I confirmed cloud solutions can be the right and effective solution given that you do the appropriate due diligence on being fit-for-purpose.  If a cloud solution is appropriate, that’s any application not just risk and compliance, then how can you minimise your internet infrastructure risk?

Read More

Tags: risk management, project management, cyber risk

Is Cloud based Risk Management worth the Risk

Posted by Greg Carroll on Tue, Oct 25, 2016 @ 10:09 AM

Last week’s simultaneous DDoS cyber-attack on major US websites from Twitter to New York Times, exposed the serious vulnerability for those with cloud based Risk & Compliance solutions. It looks like some people may be cutting off the branch they are sitting on!

Read More

Tags: corporate governance, risk management, cyber risk

Integrating ISO 9001:2015 with ISO 17025

Posted by Greg Carroll on Tue, Oct 11, 2016 @ 04:16 PM

It is not uncommon for laboratories to be saddled with maintaining both ISO 17025 and ISO 9001 certification. Although it is simpler to create and implement two QMS – and to "merge" those activities which can be merged – this approach is arduous, inefficient, and prone to mistakes.

Read More

Tags: Best practices, Quality Management

The Future of Digital Transformation

Posted by Greg Carroll on Fri, Sep 16, 2016 @ 09:57 AM

Senior management have to come to grips with the fact that Digital Transformation is not an Event but rather the operating environment of 21st century business. 

Read More

Tags: Best practices, Innovation

Misunderstanding Innovation

Posted by Greg Carroll on Mon, Aug 22, 2016 @ 10:57 AM

Last week saw the latest in misguided innovation talkfests, the AFR Innovation Summit #Innovation16.  For several days academics, public servants, journalists, and corporate employees put forward their insights into how Australia can develop an Innovation culture. 

Read More

Tags: Best practices, corporate governance, Innovation, Quality Management

Prejudice and Abuse in Youth Detention

Posted by Greg Carroll on Fri, Aug 05, 2016 @ 10:00 AM

This week I digress from my usual evangelism of all things GRC for a bit of self-indulgent introspection asking the rhetorical question: Why is our only tolerance the tolerance of prejudice?

“Ultimately, America's answer to the intolerant man is diversity.” — Robert Kennedy.

Read More

Tags: corporate governance, ethics, leadership

How to make Audit Management Effective

Posted by Greg Carroll on Mon, Jul 25, 2016 @ 10:00 AM

Effectiveness is the holy grail of Compliance Management.  Whether regulatory or ERM, ensuring business is conducted as intended is the base requirement to optimising your organization’s performance.
Read More

Tags: Best practices, Compliance Management, risk management, Quality Management, Compliance Audit