UK Corporate Governance Code by Design

Blueprint for Risk & Internal Control Effectiveness Under Provision 29

The implementation of Provision 29 under the UK Corporate Governance Code marks the most significant shift in UK risk and control expectations in over a decade, and organisations that treat it as a mere compliance exercise will fall short. In this webinar, globally recognised GRC analyst and thought leader Michael Rasmussen delivers a structured, practical blueprint for designing and sustaining a modern risk and internal control framework that meets the expectations of boards, regulators, and investors. You will leave equipped to translate Provision 29 into a performance advantage by embedding risk and control into strategy, operations, and culture across your organisation, building an environment that is aligned, adaptive, and accountable.

This webinar is for you if you are a Board Member, CRO, Internal Auditor, GRC Professional, Compliance Officer, or Risk and Control Leader navigating the new governance landscape.

What we’ll discuss

• Understanding the intent and expectations of Provision 29
• Integrating risk and internal control with strategy, performance, and culture
• Establishing clear ownership and accountability across all lines of the business
• Building a resilient and agile control environment that can adapt and evolve
• Delivering board-ready assurance that is meaningful, timely, and defensible

Let us help you go beyond compliance — and lead with confidence.

Can’t attend live?

In case you’re unable to catch the live webinar, please register to receive the recording which you can watch at your convenience.

GRC 20/20 Presenter . . .

Michael Rasmussen is an internationally recognized authority, thought leader, and pioneer in the disciplines of governance, risk management, and compliance (GRC). With over 30 years of experience, he is globally known for defining and shaping GRC strategy, processes, and technology. In February 2002, while at Forrester Research, Michael developed the concept of GRC — establishing the foundation for how organizations approach strategy, process, and technology in today’s complex business environment. For this, he is widely acknowledged as the “Father of GRC.”

A trusted advisor to boards, executives, and professionals around the world, Michael has dedicated his career to helping organizations design and implement effective GRC strategies that are aligned with business objectives. His work empowers organizations to be more effective, efficient, resilient, and agile. He is a sought-after keynote speaker, author, and advisor, with his thought leadership influencing legislation, regulatory frameworks, and corporate best practices globally.

Michael is the host of the Risk is Our Business and the Hitchhiker’s Guide to the GRC Technology podcasts, where he leads conversations with global experts exploring the evolving frontiers of risk, resilience, and corporate integrity.

Webinar Host . . .

MetricStream simplifies Governance, Risk, and Compliance (GRC) with purpose-built AI-first Risk, Compliance, Audit, CyberGRC, Third-party Risk, and Resilience products on a single low-code / no-code GRC cloud platform. Trusted by over 1 million GRC professionals across 35+ countries, our industry-specific products and AI agents help businesses successfully manage audits, avoid compliance violations and fines, reduce risk exposure, and strengthen resilience. MetricStream is headquartered in San Jose, California, with operations and offices around the globe. More information is available at www.metricstream.com