Blog

This month, Tiger Brands, the major food conglomerate in South Africa, is entangled in a major scandal. 950 have fallen ill and 180 people have died from listeriosis, which makes this the biggest food-borne illness outbreak in history.

In the unraveling of this scandal, I see a proof point for two growing trends:

First, enterprise risk management, although a relatively new industry and discipline, is globalizing. In the U.S., companies like Chipotle and Wells Fargo fail to tie their scandals to th

Recently, Forrester Research published “GRC Vision 2017-2022: Customer Demands Escalate As Regulators Falter,” which explores challenges the GRC industry will inevitably face as it develops, and the proven solution that enterprise risk management provides. We’ve broken this report down to reflect our key takeaway: Approaches to governance, risk management, and compliance (GRC) must now consider the company’s consumer base, reputation, and ethical conduct.

Traditionally, approaches to GRC entail r

When building a business case for risk management software, independent validations of customer success stories speak louder than marketing claims. Winona Health won the 2016 GRC Value Award, granted by industry analyst firm GRC 20/20. Winona’s rapid success with risk management software is just one example of just how powerful and versatile deployments are when they have: a true risk-based support, robust taxonomy technology, and flexible Software-as-a-Service deliveries.

As described in the cas

According to QuickBase CEO, Allison Mnookin, “The low-code market has finally arrived.” Citizen development is helping enterprises slash IT backlogs and is empowering business users to build self-service solutions, particularly in the governance, risk, and compliance space.

When it comes to customizing and developing applications, it is often a catch-22. It can be difficult to get feedback without a prototype, yet you don’t want to develop a mockup until you understand exactly what the requiremen

As a leader of an organization, one of the most important tasks is managing enterprise governance, risk, and compliance (GRC). At its core, a compliance program is a set of internal policies and procedures that are put in place at an organization to ensure compliance with all laws and regulations.

The importance of a robust compliance program is especially true in the wake of increasing regulations such as SOX, PCI, and HIPAA and the rapid transformation that has occurred in technology over the l

Conservative estimates of GRC software implementations place the cost at either $200,000 or 50% of total licensing costs, whichever is greater. Even when initial costs are low, many vendors make up for apparent price reductions with professional services, or customizations, required to make the product work. Professional services are so ingrained in the software landscape that many organizations now consider them a necessary evil if they are to reap the benefits of GRC.

But you shouldn’t be payin

LogicManager was recognized in a leading industry analyst’s most recent evaluation of the top 14 GRC software vendors. We take pride in the continued refinement of our product offerings and capabilities, as well as customer satisfaction levels unparalleled in the governance, risk, and compliance market.

LogicManager’s business model is designed to remove frustrations common with GRC solutions:

• Software upgrades are included in the subscription. They are also seamlessly integrated so your use of th

The role of today’s risk managers is clear: to close the gap between strategic-level initiatives and the operational risks faced at the activity level.

To do this, many organizations are adopting risk-based GRC programs – both at the request of senior management and to meet the expectations of regulators. A large number of these programs rely on spreadsheets and shared drives to manage information collected across departments and levels. But today’s GRC software solutions are proven to unlock val

Increasing cyber-hazards have been accompanied by another trend; Governance, Risk Management, and Compliance (GRC) focused on IT (referred to as IT GRC) is changing. More and more organizations have been turning to a risk-based approach.

Traditionally, IT is comprised of a variety of underlying functions. These functions include:

• IT Asset Management, commonly used to inventory servers, computers, and other technology hardware;
• IT Risk Management, including vulnerability and threat identification an

Governance programs are the unsung heroes of 21st-century business operations. Their situation is analogous to that of football’s offensive line.

If an offensive line does its job, no one will notice it, but when something goes wrong, the spotlight shifts.

Governance personnel know this feeling all too well. Unwanted surprises – be they compliance notices, audit findings, or a poor vendor relationships – are bad for business. Even a good surprise, like exceeding a sales target, can cause trouble i

Take the Risk out of ERM and GRC Software

Forrester predicts that by the end of 2015, over half of all ERM and GRC software implementations will be done through Software-as-a-Service (SaaS) models. While SaaS GRC software is undoubtedly gaining traction and market share, many organizations are still hesitant to pursue SaaS solutions. Organizations fear housing organizational data “in the cloud” (a myth we explore below), and fall victim to the common misconception that on-premise solutions provid

The Baker/baker complex, as illustrated in Joshua Foer’s Moonwalking with Einstein, states that if you ask one person to remember a baker and another to remember a man named Baker; the person asked to remember the proper noun will struggle far more than the person asked to recall the bread maker.

Same word, two very different outcomes because one provides your memory with context, while the other floats independently, devoid of the connections and methodology that improve our recall.

At LogicManag

The year 2014 has come and nearly gone, and it’s clear that enterprise risk management will not go quietly into the night. Following a 2013 that saw Edward Snowden NSA leaks, a Carnival Cruise line generator fire, and Target’s credit card heist (to name only a signature few), this year has proven to be no slouch: FINRA has disciplined thousands of companies with over $34 million in fines, Home Depot and Sony fell victim to IT security threats, and GM issued one of the largest recalls in automake

CMS Wire's Norman Marks recent article, "Why Risk Management Technology Projects Fail," captures a common but limited viewpoint of Risk Management that limits its ability to succeed in any environment, whether supported by software, spreadsheets, or pen & paper.

"To be successful, a risk program has to be designed to enable managers to make intelligent, risk-informed decisions every day. The requirements have to include the perspectives of both the risk officer and of management... You need to en

Home Depot hacked. http://t.co/qZROzHKWr2. This #risk preventable with #ERMSoftware. So why are ERM Programs failing? http://t.co/gcbLO6wCjz

-- Steven Minsky (@SteveMinsky) September 2, 2014

The goal of an ERM program is to put your organization in the best position to manage uncertainty, and to provide transparency into areas of vulnerability so businesses can make better decisions. Risk Management Software supports that process by providing insights and analytics that aren't obvious to the front

Governance functions are designed to manage risks that organizations face in operational and back office silos - financial misstatements, fraud, vendor management, disaster recovery, and other activities are all designed to address a subset of an organization’s risk profile. The concept of Enterprise Risk Management is not to create another function that exists in parallel to these areas, but rather creates a standardized methodology and language to objectively prioritize across functions and le