6.3. Aligning the Organization for an Integrated Approach to Risk

You can achieve an inherent synergy by having a centralized GRC team to help ensure formalized, consistent, and prioritized communication of GRC activities. This is in stark contrast to a decentralized function that runs the risk of reporting risks and compliance activities to management and the Board of Directors in an unfiltered and haphazard manner that may fail to appropriately draw attention to the most pressing issues.

Resources should be aligned across the entire organization to achieve a streamlined and integrated risk function. This differs from an approach where, for example, each time a new regulation is enacted, a new regulatory silo is created, adding yet another ...

Get Under Control: Governance Across the Enterprise now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.