Enterprise Compliance Today

Napoleon’s Lessons in Strategic Management

Posted by Greg Carroll on Fri, Aug 14, 2015 @ 01:01 PM

With 2015 being the 200th anniversary of the Battle of Waterloo and having a man-crush on Napoleon B, I have taken this opportunity to revisit some of lessons we can learn (good & bad) from his 20 year reign as master of the universe.

Read More

Tags: risk management, risk culture, Strategic Management, leadership

Why is it so hard to integrate risk appetite in an organisation?

Posted by Greg Carroll on Thu, Mar 19, 2015 @ 12:23 PM

Risk Appetite is such a simple concept that everyone thinks they know but invariably misunderstand. COSO and other regulatory requirements for boards to issue a Risk Appetite Statement has led to a belief a business has an overarching level of risk tolerance. Personally I don’t believe these Risk Appetite Statements add any value but regulators are regulators.

Read More

Tags: corporate governance, risk management, risk culture, decision making, risk tolerance

Axe archaic attitudes on Risk Appetite!

Posted by Greg Carroll on Fri, Oct 17, 2014 @ 11:00 AM

We need to discard the continuing archaic attitude to Risk Appetite as a compliance policing action and develop it as a tool of improving management and system performance.  In the brave new world of the 21st century volatile business environment not only are the goal posts moving, but the ground is moving under our feet.

Read More

Tags: corporate governance, risk management, risk culture, decision making, risk tolerance

Understanding ERM: 7 Guiding Principles for Successful ERM

Posted by Greg Carroll on Fri, Jun 13, 2014 @ 01:30 PM

The Dept of Defence assesses capability in 7 categories: Purpose, Environment, Organisation, People, Process, Data, and Material. Below I have used this methodology to lay out the guiding principles for achieving a successful Enterprise Risk Management (ERM) system.

Read More

Tags: Best practices, risk management, risk culture

Risk Culture vs Organizational Culture – Hitler Diaries Case Study

Posted by Greg Carroll on Fri, May 23, 2014 @ 01:00 PM

The “Risk Culture” Myth Part3: The blurring of the difference between Risk Culture & Organizational Culture has had a major detrimental effect on ensuring good governance in corporations.  An independent Risk Culture to Organizational Culture is as vital to good governance as an independent judiciary is to good government.

Read More

Tags: corporate governance, risk management, due diligence, risk culture

The "Risk Culture" Myth 2: Roadmap to a Practical Risk Culture

Posted by Greg Carroll on Fri, May 09, 2014 @ 09:55 AM

The Risk Culture Myth isn't anti risk culture but that it's been hijacked to a belief system. In this 2nd article on the Risk Culture Myth I attempt to re-position Risk Culture back to it its original practical intent.

Read More

Tags: Best practices, risk management, risk culture

The “Risk Culture” Myth

Posted by Greg Carroll on Thu, Apr 24, 2014 @ 11:31 PM

Risk Culture is the greatest myth perpetrated on business since the Y2K bug. Just like Y2K, an industry has now grown up around it assisting companies to improve their “risk culture”. The problem with “risk culture” is that it has been hijacked from its original practical intent to now being an impossible (and unrequired) philosophical pursuit.

Read More

Tags: Best practices, risk management, risk culture

Are You a Risk-Averse Risk Manager? (2 of 4)

Posted by Greg Carroll on Fri, Sep 13, 2013 @ 05:01 AM

What worked well 20 years ago in ERM is no longer good enough to keep you on top. (Second in a series of 4 articles)

Read More

Tags: Best practices, risk management, risk culture

Gen Y vs. GRC (Governance, Risk & Compliance)

Posted by Greg Carroll on Sat, Jul 27, 2013 @ 05:37 AM

Why the very traits we complain about may be the solution to our biggest problem.

Read More

Tags: Best practices, project management, risk culture

The Secret to Successful Compliance Management? It's Not the System

Posted by Greg Carroll on Mon, Jul 15, 2013 @ 09:36 AM

The key isn't filling forms, it's tapping into what motivates your employees

Read More

Tags: Compliance Management, project management, risk culture