Policy Management: Considerations, Outcomes, and Technology Choices

Policies are the backbone of governance, risk, and compliance — they set expectations, shape culture, and protect organizations. Yet many companies struggle with outdated or fragmented policies. With new advancements in policy management tools, buyers are asking: What outcomes should we expect, and how do we choose the right solution?

In this webinar, Michael Rasmussen, the “Father of GRC,” will share key success factors for modern policy management. Drawing from GRC Orchestration and Policy Management by Design, he’ll cover both sides of the buying journey:

• Internal considerations — defining objectives, governance structures, and measurable outcomes for policy management.
• External considerations — the right questions to ask providers to compare capabilities, ensure scalability, and avoid costly missteps.

Attendees will gain actionable guidance to strengthen policy management programs, evaluate vendor solutions, and make defensible technology decisions aligned with strategy and compliance obligations.

Learning Objectives

• Define policy outcomes and align them with governance, compliance, risk, and culture.
• Clarify internal governance, ownership, and accountability structures.
• Learn how to evaluate vendor solutions across integration, automation, usability, and adaptability.
• Build a business case that links policy management investments to risk reduction, stronger governance, and organizational trust.

GRC 20/20 Analyst Workshop Facilitator . . .

Michael Rasmussen is an internationally recognized authority, thought leader, and pioneer in the disciplines of governance, risk management, and compliance (GRC). With over 30 years of experience, he is globally known for defining and shaping GRC strategy, processes, and technology. In February 2002, while at Forrester Research, Michael developed the concept of GRC — establishing the foundation for how organizations approach strategy, process, and technology in today’s complex business environment. For this, he is widely acknowledged as the “Father of GRC.”

A trusted advisor to boards, executives, and professionals around the world, Michael has dedicated his career to helping organizations design and implement effective GRC strategies that are aligned with business objectives. His work empowers organizations to be more effective, efficient, resilient, and agile. He is a sought-after keynote speaker, author, and advisor, with his thought leadership influencing legislation, regulatory frameworks, and corporate best practices globally.

Michael is the host of the Risk is Our Business and the Hitchhiker’s Guide to the GRC Technology podcasts, where he leads conversations with global experts exploring the evolving frontiers of risk, resilience, and corporate integrity.

Workshop Host/Sponsor

GAN Integrity gives compliance teams a better way to do their good work. With a flexible platform that unifies compliance, ethics, and third-party risk management across the enterprise, coupled with deep domain expertise, we make it easy for compliance teams to see everything, adapt to anything, and get all the help they need. That’s why leading companies worldwide — from manufacturing to energy to financial services — rely on GAN Integrity.