BEGIN:VCALENDAR VERSION:2.0 PRODID:-//GRC 20/20 Research, LLC - ECPv6.15.20//NONSGML v1.0//EN CALSCALE:GREGORIAN METHOD:PUBLISH X-WR-CALNAME:GRC 20/20 Research, LLC X-ORIGINAL-URL:https://www.grc2020.com X-WR-CALDESC:Events for GRC 20/20 Research, LLC REFRESH-INTERVAL;VALUE=DURATION:PT1H X-Robots-Tag:noindex X-PUBLISHED-TTL:PT1H BEGIN:VTIMEZONE TZID:Europe/London BEGIN:DAYLIGHT TZOFFSETFROM:+0000 TZOFFSETTO:+0100 TZNAME:BST DTSTART:20230326T010000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:+0100 TZOFFSETTO:+0000 TZNAME:GMT DTSTART:20231029T010000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:+0000 TZOFFSETTO:+0100 TZNAME:BST DTSTART:20240331T010000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:+0100 TZOFFSETTO:+0000 TZNAME:GMT DTSTART:20241027T010000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:+0000 TZOFFSETTO:+0100 TZNAME:BST DTSTART:20250330T010000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:+0100 TZOFFSETTO:+0000 TZNAME:GMT DTSTART:20251026T010000 END:STANDARD END:VTIMEZONE BEGIN:VTIMEZONE TZID:America/New_York BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20230312T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20231105T060000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20240310T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20241103T060000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0500 TZOFFSETTO:-0400 TZNAME:EDT DTSTART:20250309T070000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0400 TZOFFSETTO:-0500 TZNAME:EST DTSTART:20251102T060000 END:STANDARD END:VTIMEZONE BEGIN:VTIMEZONE TZID:Australia/Sydney BEGIN:STANDARD TZOFFSETFROM:+1100 TZOFFSETTO:+1000 TZNAME:AEST DTSTART:20230401T160000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:+1000 TZOFFSETTO:+1100 TZNAME:AEDT DTSTART:20230930T160000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:+1100 TZOFFSETTO:+1000 TZNAME:AEST DTSTART:20240406T160000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:+1000 TZOFFSETTO:+1100 TZNAME:AEDT DTSTART:20241005T160000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:+1100 TZOFFSETTO:+1000 TZNAME:AEST DTSTART:20250405T160000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:+1000 TZOFFSETTO:+1100 TZNAME:AEDT DTSTART:20251004T160000 END:DAYLIGHT END:VTIMEZONE BEGIN:VTIMEZONE TZID:America/Chicago BEGIN:DAYLIGHT TZOFFSETFROM:-0600 TZOFFSETTO:-0500 TZNAME:CDT DTSTART:20230312T080000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0500 TZOFFSETTO:-0600 TZNAME:CST DTSTART:20231105T070000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0600 TZOFFSETTO:-0500 TZNAME:CDT DTSTART:20240310T080000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0500 TZOFFSETTO:-0600 TZNAME:CST DTSTART:20241103T070000 END:STANDARD BEGIN:DAYLIGHT TZOFFSETFROM:-0600 TZOFFSETTO:-0500 TZNAME:CDT DTSTART:20250309T080000 END:DAYLIGHT BEGIN:STANDARD TZOFFSETFROM:-0500 TZOFFSETTO:-0600 TZNAME:CST DTSTART:20251102T070000 END:STANDARD END:VTIMEZONE BEGIN:VEVENT DTSTART;TZID=Europe/London:20240201T100000 DTEND;TZID=Europe/London:20240201T160000 DTSTAMP:20260424T032623 CREATED:20231207T075245Z LAST-MODIFIED:20231219T205552Z UID:10002536-1706781600-1706803200@www.grc2020.com SUMMARY:Internal Control Management by Design\, LONDON DESCRIPTION:REGISTER\n\n\n\n\nWorkshop Summary \n\n\n\nInternal control management has become a critical foundation for corporate governance\, risk management\, and compliance (GRC). Operationally effective controls are the linchpin that ensures the organisation can reliably achieve objectives while addressing uncertainty and acting with integrity. Controls are critical throughout business strategies\, operations\, and processes. Reactive and a stovepipe approach to internal controls management leave the organisation not seeing the big picture of how controls interrelate with each other\, risks\, and compliance obligations.  In the UK\, following the consultation on Restoring Trust in Audit and Corporate Governance\, last year\, the UK Government invited the Financial Reporting Council (FRC) to strengthen the UK Corporate Governance Code (UKCGC) in specific areas.  One of the updated and strengthened sections of the UKCGC\, to be released in January 2024\, is that on internal controls.  Boards will be required to provide a declaration\, with explanation\, on whether it can reasonably conclude that the organisation’s risk management and internal control systems have been effective for the period being reported.    \n\n\n\nOrganisations need a blueprint for effective\, efficient\, and agile internal control management as business becomes increasingly complex in a changing business and risk environment – that struggles with growing regulations\, globalisation\, and distributed operations. This requires organisations to design internal management as an integrated part of strategy and operations supported by an integrated internal control information architecture that gives organisations a 360° situational awareness of internal controls in business strategy and operations. \n\n\n\nThis workshop gives participants a blueprint for effective internal control management strategies in a dynamic business and risk environment. We’ll delve into integrating internal control management seamlessly into your governance\, risk management\, and compliance – GRC – processes and operations\, ensuring a cohesive approach. You’ll explore diverse internal control management architecture models tailored to your organisation’s unique needs\, enabling you to reliably achieve objectives\, address uncertainty/risk\, and act with integrity. Discover a range of internal control assessment and monitoring techniques to safeguard your business effectively. We’ll guide you in developing a structured internal control management information and technology architecture that aligns seamlessly with your business operations\, enhancing efficiency\, effectiveness\, resilience\, and agility. Join us to empower your business with comprehensive\, strategic internal control management skills.  \n\n\n\nAgenda  \n\n\n\n\nInternal Control Drivers & Trends Impacting Organisations \n\n\n\nInternal Control Management Strategy \n\n\n\nInternal Control Management Processes \n\n\n\nInternal Control Management Information\, Technology & Automation \n\n\n\n\nWorkshop Objectives \n\n\n\nThe objective of this workshop is to leave attendees with the ability to effectively manage internal controls in the context of governance\, risk management\, and compliance to enable the organisation to reliably achieve objectives\, address uncertainty\, and act with integrity. Participants will understand the challenges and pitfalls associated with managing internal controls and achieving success by capitalising on an integrated internal control management strategy and processes. The workshop will detail the ongoing monitoring and automation of internal controls\, helping attendees define a structured internal control management lifecycle.  \n\n\n\nOwnership and accountability for internal control management will be established\, ensuring process consistency and effective communication with control\, risk\, and business owners. Attendees will also learn to track critical workflows and tasks related to internal control processes and assessments. Furthermore\, the workshop will equip participants with the skills to deliver effective internal control governance and assurance to the board of directors\, regulators\, and stakeholders. Metrics will be monitored to establish the effectiveness of internal controls\, and attendees will become adept at identifying and resolving issues related to internal controls.  \n\n\n\nThe workshop will also cover mapping internal controls to objectives\, risks\, policies\, issues\, and other GRC areas.  \n\n\n\nDetailed Agenda  \n\n\n\nPart 1: Internal Control Drivers & Trends  \n\n\n\n\nWhy internal control management matters \n\n\n\nInternal control in disarray: how organisations mismanage controls \n\n\n\nInternal control exposure: how mismanaged controls expose the organisation to risk \n\n\n\nCurrent drivers & trends pressuring organisations in internal control management \n\n\n\nDifferent ways organisations approach internal control management \n\n\n\nWhat effective internal control management achieves: internal control management’s role in governance\, risk management\, and compliance \n\n\n\n\nPart 2: Internal Control Strategy & Governance  \n\n\n\n\nBlueprint for effective internal control management \n\n\n\nInternal control governance: bringing together the range of internal control management roles and responsibilities in the organisation \n\n\n\nDeveloping a collaborative and enterprise view of internal controls and how it relates to performance\, risk\, and compliance \n\n\n\nInternal control management strategy: defining a structure to govern internal controls \n\n\n\n\nPart 3: Internal Control Management Process & Lifecycle  \n\n\n\n\nManaging internal controls in the lifecycle and capability of GRC \n\n\n\nInternal Control Identification – Collaborative process to identify internal controls from both the bottom and the top \n\n\n\nInternal Control Analysis – Defining effective and operational controls to provide assurance while mitigating risk \n\n\n\nInternal Control Management – Strategies to manage controls in context of performance\, risk\, and compliance \n\n\n\nInternal Control Communication – Assign and manage internal control ownership and accountability \n\n\n\nInternal control metrics & reporting \n\n\n\n\nPart 4: Internal Control Information & Technology Architecture  \n\n\n\n\nEnabling information & technology of internal control management \n\n\n\nInternal control information architecture: blueprint for managing internal control  content and related data \n\n\n\nTypes of internal control automation and how it integrates into broader GRC processes \n\n\n\nKinds of internal control technologies and what best serves the organisation \n\n\n\nInternal control management business case: articulating the value of effective internal control management\n\n\n\n\nGRC 20/20 Analyst will be facilitating this workshop . . . \n\n\n\nMichael Rasmussen\n\n\n\nGRC 20/20 ResearchMichael Rasmussen – The GRC Pundit @ GRC 20/20 Research\, Michael Rasmussen is an internationally recognized pundit on governance\, risk management\, and compliance (GRC) – with specific expertise on the topics of GRC strategy\, process\, information\, and technology architectures and solutions. With 30+ years of experience\, Michael helps organizations improve GRC processes\, design and implement GRC architectures and select solutions that are effective\, efficient\, and agile. He is a sought-after keynote speaker\, author\, and advisor and is noted as the “Father of GRC” – being the first to define and model the GRC market in February 2002 while at Forrester Research\, Inc. \n\n\n\nAbout Event Host . . .\n\n\n\n\n\n\n\nCoreStream provides a next generation GRC platform\, covering a broad range of GRC topic areas.  The CoreStream platform is a true no-code platform that is used by organisations to digitally enable their GRC activities.  It also offers a range of ‘off-the-shelf’ solutions to address common customer requirements.  In relation to controls\, CoreStream’s intuitive and flexible controls solution includes all the key features to help you implement\, embed and manage your internal controls framework.  The solution comes pre-configured but can also be adjusted through no-code configuration to meet your exact requirements based on your operating model and approach to internal controls.  \n\n\n\n \nShare this:\n Email a link to a friend (Opens in new window)\n Email\n \n Print (Opens in new window)\n Print\n \n Share on LinkedIn (Opens in new window)\n LinkedIn\n \n Share on X (Opens in new window)\n X\n \n Share on Facebook (Opens in new window)\n Facebook URL:https://www.grc2020.com/event/london-workshop-internal-control-management-by-design/ CATEGORIES:20/20 Workshops ATTACH;FMTTYPE=image/jpeg:https://www.grc2020.com/wp-content/uploads/2023/12/image001-scaled-e1703019340785.jpg END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240206T120000 DTEND;TZID=America/New_York:20240206T130000 DTSTAMP:20260424T032623 CREATED:20240104T165808Z LAST-MODIFIED:20240104T165811Z UID:10002550-1707220800-1707224400@www.grc2020.com SUMMARY:Best Practices in Policy and Procedure Management for Financial Services DESCRIPTION:REGISTER\n\n\n\n\nFinancial services firms contend with a relentless tide of regulatory changes\, emerging risks\, and evolving business operations; policy and procedure management challenges become increasingly complex. They must create and maintain policies and ensure their ongoing relevance and compliance in a dynamic regulatory environment. Managing policies and procedures is a critical cornerstone in corporate governance\, risk management\, and compliance. Policies and procedures done right enable a financial services organization to reliably achieve objectives\, address uncertainty/risk\, and act with integrity. The key to success lies in crafting structured processes that facilitate the authoring\, approval\, and maintenance of policies while engaging employees to foster awareness\, understanding\, and adherence.  \n\n\n\nJoin Michael Rasmussen from GRC 20/20 for a webinar that delves into the heart of these challenges\, offering insights into effective strategies and technology’s pivotal role in navigating the intricate waters of policy and procedure management within the dynamic realm of financial services\, including: \n\n\n\n\nEffective Policy Maintenance Strategies\n\n\n\nUnderstanding Policy Lifecycle Management\n\n\n\nStructured Processes for Policy Authoring and Approval\n\n\n\nEmployee Engagement on Policies\, Attestations\, and Awareness\n\n\n\nThe Role of Technology in Policy Lifecycle Management\n\n\n\n\nIf you have any questions for Michael\, please let us know when you register. \n\n\n\nGRC 20/20 Analyst will be presenting at the event . . . \n\n\n\nMichael Rasmussen\n\n\n\nGRC 20/20 ResearchMichael Rasmussen – The GRC Pundit @ GRC 20/20 Research\, Michael Rasmussen is an internationally recognized pundit on governance\, risk management\, and compliance (GRC) – with specific expertise on the topics of GRC strategy\, process\, information\, and technology architectures and solutions. With 30+ years of experience\, Michael helps organizations improve GRC processes\, design and implement GRC architectures and select solutions that are effective\, efficient\, and agile. He is a sought-after keynote speaker\, author\, and advisor and is noted as the “Father of GRC” – being the first to define and model the GRC market in February 2002 while at Forrester Research\, Inc. \n\n\n\nConference Host\n\n\n\n\n\n\n\nMCO provides compliance management software that enables companies around the world to reduce their risk of misconduct. The MyComplianceOffice platform lets compliance professionals demonstrate they are proactively managing the regulated activities of employees\, third-party vendors and other agents of the firm. Available as a unified suite or à la carte\, our easy-to-use and extensible SaaS-based solutions get clients up and running quickly and cost-efficiently. \nShare this:\n Email a link to a friend (Opens in new window)\n Email\n \n Print (Opens in new window)\n Print\n \n Share on LinkedIn (Opens in new window)\n LinkedIn\n \n Share on X (Opens in new window)\n X\n \n Share on Facebook (Opens in new window)\n Facebook URL:https://www.grc2020.com/event/best-practices-in-policy-and-procedure-management-for-financial-services/ CATEGORIES:Webinars ATTACH;FMTTYPE=image/jpeg:https://www.grc2020.com/wp-content/uploads/2024/01/PP-live-webinar-photo-LinkedIn.jpg END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240207T110000 DTEND;TZID=America/New_York:20240207T120000 DTSTAMP:20260424T032623 CREATED:20231220T212221Z LAST-MODIFIED:20231220T212224Z UID:10002540-1707303600-1707307200@www.grc2020.com SUMMARY:GRC Trends and Strategies to Accelerate Risk\, Compliance\, and Audit Programs in 2024 and Beyond DESCRIPTION:REGISTER\n\n\n\n\nToday\, we live in a world with an unpredictable geopolitical landscape\, vulnerable markets\, and economic uncertainties that contribute to elevated risks across cybersecurity\, operational\, third-party\, and regulatory areas. The GRC programs you’ve relied on may not be enough for this newly dynamic risk and compliance landscape. Organizations must enhance their GRC effectiveness and efficiency based on risk insights and intelligence for better decision-making. \n\n\n\nJoin GRC 20/20’s Pundit Michael Rasmussen and MetricStream experts to discuss the latest trends in the GRC market as we head into another year full of demands and opportunities. Our expert panel will discuss the topics below and more: \n\n\n\nOur expert panel will discuss the below trends and more: \n\n\n\n\nTop trends in GRC – into 2024 and beyond\n\n\n\nHow to create a connected strategy to tackle interconnected risks\n\n\n\nMeeting and exceeding emerging technology trends such as hyper-automation and optimization with AI\n\n\n\nFortifying data across the extended enterprise with proactive measures to mitigate cybersecurity risks\n\n\n\nEmpowering the frontline to build a resilient organization\n\n\n\n\nSee what 2024 holds for you – and get a jump on your GRC programs with an informed perspective. \n\n\n\nWe look forward to welcoming you to this interactive session. Register today – there is no charge for this session\, but space is limited! \n\n\n\nPlease bring your questions! We look forward to an informative\, engaging\, and interactive session. \n\n\n\nGRC 20/20 Analyst will be presenting at the event . . . \n\n\n\nMichael Rasmussen\n\n\n\nGRC 20/20 ResearchMichael Rasmussen – The GRC Pundit @ GRC 20/20 Research\, Michael Rasmussen is an internationally recognized pundit on governance\, risk management\, and compliance (GRC) – with specific expertise on the topics of GRC strategy\, process\, information\, and technology architectures and solutions. With 30+ years of experience\, Michael helps organizations improve GRC processes\, design and implement GRC architectures and select solutions that are effective\, efficient\, and agile. He is a sought-after keynote speaker\, author\, and advisor and is noted as the “Father of GRC” – being the first to define and model the GRC market in February 2002 while at Forrester Research\, Inc. \n\n\n\nConference Host\n\n\n\n\n\n\n\nMetricStream is a global SaaS leader of GRC solutions that empower organizations to thrive on risk by accelerating growth via risk-aware decisions. We connect governance\, risk management and compliance across the extended enterprise. Our ConnectedGRC and three product lines – BusinessGRC\, CyberGRC\, and ESGRC – are based on a single\, scalable platform that supports you wherever you are on your GRC journey. MetricStream is headquartered in San Jose\, California\, with an operations and R&D center in Bangalore\, India\, and sales and operations support around the globe. \nShare this:\n Email a link to a friend (Opens in new window)\n Email\n \n Print (Opens in new window)\n Print\n \n Share on LinkedIn (Opens in new window)\n LinkedIn\n \n Share on X (Opens in new window)\n X\n \n Share on Facebook (Opens in new window)\n Facebook URL:https://www.grc2020.com/event/grc-trends-and-strategies-to-accelerate-risk-compliance-and-audit-programs-in-2024-and-beyond/ CATEGORIES:Webinars ATTACH;FMTTYPE=image/png:https://www.grc2020.com/wp-content/uploads/2023/12/Screenshot-2023-12-20-at-3.19.33 PM.png END:VEVENT BEGIN:VEVENT DTSTART;TZID=Europe/London:20240215T100000 DTEND;TZID=Europe/London:20240215T160000 DTSTAMP:20260424T032623 CREATED:20231221T161925Z LAST-MODIFIED:20231221T162003Z UID:10002541-1707991200-1708012800@www.grc2020.com SUMMARY:Third-Party Risk Management by Design\, LONDON DESCRIPTION:REGISTER\n\n\n\n\nWhat you can expect\n\n\n\nIn this workshop\, participants will gain a holistic perspective on third-party management\, mastering both top-down and bottom-up strategies. We’ll delve into integrating third-party management seamlessly into your business strategy\, processes\, and operations\, ensuring a cohesive approach. You’ll explore diverse third-party management architecture models tailored to your organization’s unique needs\, enabling you to make informed decisions. Discover a range of assessment and monitoring techniques designed to safeguard your business effectively. We’ll guide you in developing a structured third-party information architecture that aligns seamlessly with your business operations\, enhancing efficiency. Moreover\, you’ll learn the art of clear and persuasive communication\, essential for gathering attestation and fostering strong partnerships across your entire organization. Join us to empower your business with comprehensive\, strategic third-party management skills. \n\n\n\nAgenda\n\n\n\n\nThird Party Management by Design\n\n\n\nThe Blueprint for Effective Third Party Management\n\n\n\nFrom onboarding to offboarding; managing third parties\n\n\n\nEnabling information and technology management of third party relationships\n\n\n\nThe strategic evolution of TPRM landscape\n\n\n\n\nObjectives: \n\n\n\nThe objective of this workshop is to leave attendees with the ability to effectively manage due diligence and third-party risk. Participants will gain a deep understanding of the challenges and pitfalls associated with managing third-party risk\, achieving success by capitalizing on these relationships while ensuring compliance. The workshop will facilitate ongoing monitoring of third-party partners\, helping attendees define a structured third-party management lifecycle for managing and monitoring relationships. \n\n\n\nOwnership and accountability for third-party management will be established\, ensuring process consistency and effective communication with partners on matters of risk and compliance. Attendees will also learn to track critical workflows and tasks internally and with third-party relationships. Furthermore\, the workshop will equip participants with the skills to deliver effective third-party governance and assurance to the board of directors\, regulators\, and stakeholders. Metrics will be monitored to establish the effectiveness of third-party management\, and attendees will become adept at identifying and resolving issues with third parties. \n\n\n\nThe workshop will also cover mapping third-party relationships to objectives\, risks\, controls\, issues\, and other GRC areas. \n\n\n\nDetailed Agenda\n\n\n\nPart 1: Third Party Management by Design\n\n\n\n\nWhy Third Party Management Matters\n\n\n\nThird Parties in Disarray: how organizations mismanage third parties\n\n\n\nThird Party Exposure: how mismanaged third parties expose the organization to risk\n\n\n\nCurrent drivers & trends pressuring organizations in third party management\n\n\n\nDifferent ways organizations approach third party management\n\n\n\nWhat Effective Third Party Management Achieves: third party management’s role in governance\, risk management\, and compliance\n\n\n\n\nPart 2: Third Party Governance\n\n\n\n\nBlueprint for Effective Third Party Management\n\n\n\nThird Party Governance Committee: bringing together the range of third party management roles and responsibilities in the organization\n\n\n\nThird Party Management Charter: defining a structure to govern third party relationships\n\n\n\nHow to Develop a Third Party Management Strategic Plan\n\n\n\n\nPart 3: Third Party Management Lifecycle\n\n\n\n\nManaging Third Parties from Onboard to Offboarding\n\n\n\nThird party identification & onboarding\n\n\n\nOngoing context monitoring\n\n\n\nThird party communications & attestations\n\n\n\nThird party monitoring & assessment\n\n\n\nThird party forms & approvals\n\n\n\nThird party metrics & reporting\n\n\n\nThird party re-evaluation and offboarding\n\n\n\n\nPart 4: Third Party Management Architecture\n\n\n\n\nEnabling Information & Technology Management of Third Party Relationships\n\n\n\nThird Party Management Information Architecture: Blueprint for Managing Third Party Content and Related Data\n\n\n\nTypes of third party management information and how it integrates into third party processes\n\n\n\nComponents and requirements for a third party information architecture\n\n\n\nThird Party Management Technology Architecture: Blueprint for Enabling Third Party Management Processes with Technology\n\n\n\nKinds of third party management technologies and what best serves the organization\n\n\n\nCapabilities and requirements of third party management platforms\n\n\n\nThird Party Management Business Case: Articulating the Value of Effective Third Party Management\n\n\n\nDefining a business case and value of third party management platforms\n\n\n\n\nGRC 20/20 Analyst will be facilitating this workshop . . . \n\n\n\nMichael Rasmussen\n\n\n\nGRC 20/20 ResearchMichael Rasmussen – The GRC Pundit @ GRC 20/20 Research\, Michael Rasmussen is an internationally recognized pundit on governance\, risk management\, and compliance (GRC) – with specific expertise on the topics of GRC strategy\, process\, information\, and technology architectures and solutions. With 30+ years of experience\, Michael helps organizations improve GRC processes\, design and implement GRC architectures and select solutions that are effective\, efficient\, and agile. He is a sought-after keynote speaker\, author\, and advisor and is noted as the “Father of GRC” – being the first to define and model the GRC market in February 2002 while at Forrester Research\, Inc. \n\n\n\nAbout Event Host . . .\n\n\n\n\n\n\n\nSureCloud is a leading provider of cloud based\, Integrated GRC (Governance\, Risk & Compliance) products and Cybersecurity services\, which reinvent the way you manage risk. SureCloud\, and our Aurora platform\, enable organizations to make better decisions and achieve their desired business outcomes. SureCloud is underpinned by Aurora\, a highly configurable no-code platform\, which is simple\, intuitive\, and flexible. Unlike other GRC Platform providers who force organizations to adapt their processes\, our solutions are highly configurable. Aurora can be easily customized to fit a wide range of operating models\, meaning that our clients get immediate and sustained value from the outset. \nShare this:\n Email a link to a friend (Opens in new window)\n Email\n \n Print (Opens in new window)\n Print\n \n Share on LinkedIn (Opens in new window)\n LinkedIn\n \n Share on X (Opens in new window)\n X\n \n Share on Facebook (Opens in new window)\n Facebook URL:https://www.grc2020.com/event/third-party-risk-management-by-design-london/ CATEGORIES:20/20 Workshops ATTACH;FMTTYPE=image/jpeg:https://www.grc2020.com/wp-content/uploads/2023/12/Screenshot-2023-12-21-at-10.13.30 AM.jpg END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/New_York:20240221T100000 DTEND;TZID=America/New_York:20240221T150000 DTSTAMP:20260424T032623 CREATED:20231227T205842Z LAST-MODIFIED:20240125T084935Z UID:10002542-1708509600-1708527600@www.grc2020.com SUMMARY:Risk & Resilience Management by Design Workshop\, ATLANTA DESCRIPTION:REGISTER\n\n\n\n\nWorkshop Summary \n\n\n\nGone are the years of simplicity in business operations. Exponential growth and change in risks\, regulations\, globalization\, distributed operations\, competitive velocity\, technology\, and business data encumber organizations of all sizes. Keeping changes to business strategy\, operations\, and processes in sync is a significant challenge for boards\, executives\, and management professionals throughout all levels of the business. The interconnectedness of objectives\, risks\, resilience\, and integrity require 360° contextual awareness of risk and resiliency. Organizations must see the intricate relationships and impacts of objectives\, risks\, processes\, and controls. It requires holistic visibility and intelligence into risk and resiliency. The complexity of business – combined with the intricacy and interconnectedness of risk and objectives – necessitates organizations implement a strategic approach to business and operational risk and resilience. \n\n\n\nOrganizations take risks all the time but fail to monitor and manage these risks effectively in an environment that demands agility. Too often\, risk management is seen as a compliance exercise and not truly integrated with the organization’s strategy\, decision-making\, and objectives. It results in the inevitable failure of risk management\, providing case studies for future generations on how poor risk and resiliency management leads to the demise of organizations – even those with strong brands. Keeping risk\, complexity\, and change in sync is a significant challenge for the organization’s boards\, executives\, and management professionals. This challenge is even greater when risk management is buried in the depths of departments and approached from a compliance or audit angle\, not as an integrated discipline of decision-making that has a symbiotic relationship with performance and strategy. This is further compounded when business continuity programs are completely disconnected and not part of risk management. Organizations need to understand how to monitor risk-taking\, measure that the associated risks are the right risks\, and review whether the risks are managed effectively to ensure the organization’s resilience. \n\n\n\nThe ecosystem of business objectives\, uncertainty/risk\, and integrity is complex and interconnected and requires a holistic\, contextual awareness of the organization – rather than a dissociated collection of processes and departments. Change in one area has cascading effects that impact the entire ecosystem. This interconnectedness of business demands 360° contextual awareness in the organization’s risk and resilience processes to reliably achieve objectives\, address uncertainty\, and act with integrity. Organizations must see the intricate intersection of objectives\, risks\, and boundaries across the business. Firms globally and across industries are focused on integrating risk management and resilience (historically business continuity/disaster recovery) programs. This is becoming a key regulatory requirement in some industries. Delivering this requires a holistic view of the objectives and processes of the organization in the context of uncertainty and risk and the symbiotic interaction of risk management and business continuity.  \n\n\n\nThis workshop aims to provide a blueprint for attendees on successful risk and resilience management with an integrated strategy\, process\, information\, and technology architecture.  \n\n\n\nObjectives of the workshop:  \n\n\n\nAttendees will take back to their organization’s approaches to address: \n\n\n\n\nEffectively managing risk and resilience\n\n\n\nUnderstand the challenges and pitfalls of managing risk and resilience\n\n\n\nAchieve success by capitalizing on agility while maintaining risk and resilience\n\n\n\nFacilitate ongoing monitoring of risk and resilience\n\n\n\nDefine a risk and resilience management lifecycle \n\n\n\nEstablish risk and resilience management ownership and accountability\n\n\n\nProvide risk and resilience management process consistency\n\n\n\nCommunicate effectively with employees and stakeholders on matters of risk and resilience\n\n\n\nTrack critical risk and resilience workflow and tasks\n\n\n\nDeliver effective risk and resilience governance and assurance to the board of directors\, regulators\, and stakeholders\n\n\n\nMonitor metrics to establish effectiveness or risk and resilience management\n\n\n\nIdentify and resolve risk and resilience issues\n\n\n\n\nAgenda:  \n\n\n\nPart 1: Risk & Resilience by Design Why Risk & Resilience Management Matters \n\n\n\n\nRisk and Resilience in Disarray: how organizations mismanage risk and resilience\n\n\n\nRisk Exposure: how mismanaged risk expose the organization \n\n\n\nCurrent drivers & trends on organizations in risk and resilience management\n\n\n\nDifferent ways organizations approach risk and resilience management\n\n\n\nWhat Effective Risk & Resilience Management Achieves\n\n\n\n\nPart 2: Risk & Resilience Governance Blueprint for Effective Risk & Resilience Management \n\n\n\n\nRisk & Resilience Governance Committee: bringing together the range of risk and resilience roles and responsibilities in the organization\n\n\n\nRisk & Resilience Management Charter: defining a structure to govern risk and resilience across the organization\n\n\n\nHow to Develop a Risk & Resilience Management Strategic Plan\n\n\n\n\nPart 3: Risk & Resilience Management Lifecycle Managing Risk & Resilience in Context of Business Change \n\n\n\n\nRisk identification\n\n\n\nOngoing risk and internal/external business context monitoring\n\n\n\nRisk assessment\, business impact assessments\, and scenario planning\n\n\n\nRisk treatment and engagement with the business\n\n\n\nRisk & resilience metrics & reporting\n\n\n\nRisk & resilience evaluation\, benchmarking & assurance\n\n\n\n\nPart 4: Risk & Resilience Management Architecture Enabling Information & Technology Management for Risk & Resilience Management \n\n\n\n\nRisk & Resilience Management Information Architecture: Blueprint for Managing Risk & Resilience Content and Related Data\n\nTypes of risk and resilience management information and how it integrates into risk management processes\n\n\n\nComponents and requirements for a compliance information architecture\n\n\n\n\n\nRisk & Resilience Management Technology Architecture: Blueprint for Enabling Risk & Resilience Management Processes with Technology\n\nKinds of risk and resilience management technologies and what best serves the organization\n\n\n\nCapabilities and requirements of risk and resilience management platforms\n\n\n\n\n\nRisk & Resilience Management Business Case: Articulating the Value of Effective Risk & Resilience Management\n\n\n\n\nGRC 20/20 Instructor\n\n\n\nMichael Rasmussen\n\n\n\nGRC 20/20 ResearchMichael Rasmussen – The GRC Pundit @ GRC 20/20 Research\, Michael Rasmussen is an internationally recognized pundit on governance\, risk management\, and compliance (GRC) – with specific expertise on the topics of GRC strategy\, process\, information\, and technology architectures and solutions. With 30+ years of experience\, Michael helps organizations improve GRC processes\, design and implement GRC architectures and select solutions that are effective\, efficient\, and agile. He is a sought-after keynote speaker\, author\, and advisor and is noted as the “Father of GRC” – being the first to define and model the GRC market in February 2002 while at Forrester Research\, Inc. \n\n\n\nWorkshop Host\n\n\n\n\n\n\n\nHorváth is an international\, independent management consultancy firm with over 1\,200 employees in locations in Europe\, the USA\, and other global markets. We represent in-depth knowledge across different industries and top-level subject matter expertise in all company functions – with a focus on performance management and transformation. We carry out projects for our international customers around the world. In this context\, we provide precise knowledge of\, and take into account\, the local conditions thanks to the cooperation with our partners of “Cordence Worldwide”\, a global network of truly connected consultancy firms with the ability to think and deliver together. \n\n\n\n \nShare this:\n Email a link to a friend (Opens in new window)\n Email\n \n Print (Opens in new window)\n Print\n \n Share on LinkedIn (Opens in new window)\n LinkedIn\n \n Share on X (Opens in new window)\n X\n \n Share on Facebook (Opens in new window)\n Facebook URL:https://www.grc2020.com/event/risk-resilience-management-by-design-workshop-atlanta/ CATEGORIES:20/20 Workshops ATTACH;FMTTYPE=image/jpeg:https://www.grc2020.com/wp-content/uploads/2023/12/RiskAtlanta.jpg END:VEVENT BEGIN:VEVENT DTSTART;TZID=Australia/Sydney:20240227T100000 DTEND;TZID=Australia/Sydney:20240227T110000 DTSTAMP:20260424T032623 CREATED:20240205T193208Z LAST-MODIFIED:20240208T180843Z UID:10002554-1709028000-1709031600@www.grc2020.com SUMMARY:GRC Trends That Will Define 2024  DESCRIPTION:REGISTER\n\n\n\n\nJoin us for an insightful discussion as industry experts Michael Rasmussen\, Director at GRC 20/20 Research\, and Darren Jacobs\, Chief Product Officer at Readinow\, collaborate to explore the future of Governance\, Risk\, and Compliance (GRC) in 2024. \n\n\n\nIn a year sure to be defined by a rapidly changing technological landscape\, this webinar provides an exclusive opportunity to explore the dynamic GRC environment. Get ready to glean invaluable insights from two seasoned experts in the field as they share perspectives on top trends\, the pivotal role of software in digital transformation\, the impact of AI on GRC\, and effective management strategies that will define GRC in 2024. \n\n\n\nWhat’s Covered?\n\n\n\n\nUnveiling the Top Trends in GRC 2024: Explore the most impactful trends shaping GRC practices with insights from Michael Rasmussen\, providing a roadmap for your organisation’s success.\n\n\n\nThe Role of Software in Driving Digital Transformation: Understand the critical connection between software solutions and the digital transformation journey as Darren Jacobs explores real-world examples of success stories.\n\n\n\nHarnessing the Power of AI in GRC: Gain insights into the transformative role of Artificial Intelligence in GRC as both speakers shed light on how it can elevate your risk and compliance management strategies.\n\n\n\nStrategies for Effective GRC Management in 2024: Learn practical insights and actionable strategies from industry leaders on managing GRC effectively in the ever-changing landscape.\n\n\n\nExploring Opportunities in 2024: Identify key opportunities that lie ahead and learn how to position your organisation for success in the GRC landscape of 2024.\n\n\n\nLive Q&A session with Michael Rasmussen and Darren Jacobs\n\n\n\nLive demo of ReadiNow’s AI-driven GRC Platform\n\n\n\n\nGRC 20/20 Analyst will be presenting at the event . . . \n\n\n\nMichael Rasmussen\n\n\n\nMichael Rasmussen is an internationally recognized pundit on governance\, risk management\, and compliance (GRC) – with specific expertise on enterprise GRC strategy and processes supported by robust information and technology architectures.  With 30+ years of experience\, Michael helps organizations improve GRC strategy and processes supported by the correct GRC technology architecture. This enables organizations to align GRC with the business and deliver effective\, efficient\, resilient\, and agile capabilities to the organization.  He is a sought-after keynote speaker\, author\, and advisor and is noted as the “Father of GRC” — the first to define and model the GRC market in February 2002 while at Forrester. \n\n\n\nAbout Event Host . . .\n\n\n\n\n\n\n\nReadiNow is a No-code platform. We empower organisations to transform their organisational processes to improve business performance with our all-in-one No-code Platform. In addition to empowering our customers to create their own bespoke solutions\, we offer modules for Governance\, Risk\, and Compliance (GRC) needs. Our end-to-end complete suite of solutions includes Business Continuity Management\, Corporate Compliance\, Enterprise Risk Management\, Corporate Governance\, Vendor Management\, Audit Management\, Workplace\, Health and Safety (WHS)\, IT Disaster Recovery\, and much more. Headquartered in Sydney\, Australia\, we service a global customer base across multiple industries including Banks\, Energy and Utilities\, Financial Services\, Government\, Retail\, and manufacturing. \nShare this:\n Email a link to a friend (Opens in new window)\n Email\n \n Print (Opens in new window)\n Print\n \n Share on LinkedIn (Opens in new window)\n LinkedIn\n \n Share on X (Opens in new window)\n X\n \n Share on Facebook (Opens in new window)\n Facebook URL:https://www.grc2020.com/event/grc-trends-that-will-define-2024/ CATEGORIES:Webinars ATTACH;FMTTYPE=image/jpeg:https://www.grc2020.com/wp-content/uploads/2024/02/ReadiNow-Webinar.jpg END:VEVENT BEGIN:VEVENT DTSTART;TZID=America/Chicago:20240227T100000 DTEND;TZID=America/Chicago:20240227T110000 DTSTAMP:20260424T032623 CREATED:20240208T173742Z LAST-MODIFIED:20240212T100939Z UID:10002556-1709028000-1709031600@www.grc2020.com SUMMARY:How to Model Security Maturity in Your Organization DESCRIPTION:REGISTER\n\n\n\n\nIn an era dominated by evolving cyber threats\, we understand the challenges involved with keeping your GRC program on track. Later this month\, SimpleRisk CEO\, Josh Sokol\, widely viewed as a GRC subject matter expert\, will be co-hosting a webinar with Michael Rasmussen\, GRC Pundit at GRC 20/20. As thought leaders in the GRC space\, they will provide a step-by-step practical approach on how to: \n\n\n\n\nEstablish a baseline to assess your organization’s security maturity;\n\n\n\nDetermine what level of security you are capable of achieving;\n\n\n\nCreate an action plan to measure ongoing progress.\n\n\n\n\nBy the end of this webinar\, participants will be equipped with a clear roadmap on how to establish a security baseline within their own organizations and obtain the knowledge to develop\, implement\, and maintain effective cybersecurity strategies\, processes\, and technologies. \n\n\n\nGRC 20/20 Analyst will be presenting at the event . . . \n\n\n\nMichael Rasmussen\n\n\n\nMichael Rasmussen is an internationally recognized pundit on governance\, risk management\, and compliance (GRC) – with specific expertise on enterprise GRC strategy and processes supported by robust information and technology architectures.  With 30+ years of experience\, Michael helps organizations improve GRC strategy and processes supported by the correct GRC technology architecture. This enables organizations to align GRC with the business and deliver effective\, efficient\, resilient\, and agile capabilities to the organization.  He is a sought-after keynote speaker\, author\, and advisor and is noted as the “Father of GRC” — the first to define and model the GRC market in February 2002 while at Forrester. \n\n\n\nWebinar Hosts\n\n\n\n\n\n\n\nSimpleRisk is a Governance\, Risk Management and Compliance software company headquartered in Texas with a customer base that spans the globe. Our SimpleRisk Core product offering was created in 2013 and has been downloaded over 60\,000 times to date. The SimpleRisk GRC platform has gained a reputation for being simple\, effective and affordable\, ensuring customers will benefit from the repeatable\, scalable and sustainable processes that are the foundation of any successful GRC program. With SimpleRisk\, you’re able to identify\, rank\, monitor\, and track risks through their mitigation life cycle and continually measure the progress of your cybersecurity program. \nShare this:\n Email a link to a friend (Opens in new window)\n Email\n \n Print (Opens in new window)\n Print\n \n Share on LinkedIn (Opens in new window)\n LinkedIn\n \n Share on X (Opens in new window)\n X\n \n Share on Facebook (Opens in new window)\n Facebook URL:https://www.grc2020.com/event/how-to-model-security-maturity-in-your-organization/ CATEGORIES:Webinars ATTACH;FMTTYPE=image/jpeg:https://www.grc2020.com/wp-content/uploads/2024/02/Webinar-Social-Media-Banner.jpg END:VEVENT BEGIN:VEVENT DTSTART;TZID=Europe/London:20240228T150000 DTEND;TZID=Europe/London:20240228T160000 DTSTAMP:20260424T032623 CREATED:20240208T175604Z LAST-MODIFIED:20240208T175607Z UID:10002558-1709132400-1709136000@www.grc2020.com SUMMARY:Stories in Third Party Risk Management DESCRIPTION:Real world lessons and successes with Michael Rasmussen\n\n\n\n\n\n\n\n\nREGISTER\n\n\n\n\nThe world of TPRM has evolved just as rapidly as any other industry thanks to fast growth and development in associated regulations and technology.  \n\n\n\nOne person who has seen it develop over time is Michael Rasmussen\, the TPRM pundit from GRC 2020.  \n\n\n\nIn this webinar Michael talks to some of the most influential developments he’s seen in Europe and beyond during his time working in the Governance Risk and Compliance space.  \n\n\n\nIn this webinar we will discuss: \n\n\n\n\nTried and trusted strategies: Lessons and tactics which stand the test of time\n\n\n\nThe most influential industry trends: Key adaptations which have changed the shape of TPRM in modern days\n\n\n\nLessons learned: Fast track your TPRM program with the benefit of experience\n\n\n\n\nGRC 20/20 Analyst will be presenting at the event . . . \n\n\n\nMichael Rasmussen\n\n\n\nMichael Rasmussen is an internationally recognized pundit on governance\, risk management\, and compliance (GRC) – with specific expertise on enterprise GRC strategy and processes supported by robust information and technology architectures.  With 30+ years of experience\, Michael helps organizations improve GRC strategy and processes supported by the correct GRC technology architecture. This enables organizations to align GRC with the business and deliver effective\, efficient\, resilient\, and agile capabilities to the organization.  He is a sought-after keynote speaker\, author\, and advisor and is noted as the “Father of GRC” — the first to define and model the GRC market in February 2002 while at Forrester. \n\n\n\nAbout Event Host . . .\n\n\n\n\n\n\n\nEthixbase360 delivers market-leading technology to help companies identify\, manage\, and mitigate risks in their third-party network. The Ethixbase360 platform was designed to automate the identification of relevant risk indicators\, provide insights from the data collected\, and then create a positive impact for both its clients and their third parties with monitoring and training. Ethixbase360 acquired Tcompliance\, formerly known as TRACE Inc.\, in 2022 expanding its suite of risk-based due diligence solutions to offer a unique collaborative approach that reduces screening costs for companies. Combined\, the two companies have conducted over 600\,000 due diligence reviews in every non-sanctioned country and monitor more than 2 million third parties daily. Ethixbase360’s solutions are aligned with the 10 principles of the United Nations Global Compact\, the world’s leading corporate sustainability framework. \n\n\n\n \nShare this:\n Email a link to a friend (Opens in new window)\n Email\n \n Print (Opens in new window)\n Print\n \n Share on LinkedIn (Opens in new window)\n LinkedIn\n \n Share on X (Opens in new window)\n X\n \n Share on Facebook (Opens in new window)\n Facebook URL:https://www.grc2020.com/event/stories-in-third-party-risk-management/ CATEGORIES:Webinars ATTACH;FMTTYPE=image/png:https://www.grc2020.com/wp-content/uploads/2024/02/Stories-in-Third-Party-Risk-Management-1.png END:VEVENT BEGIN:VEVENT DTSTART;TZID=Europe/London:20240229T150000 DTEND;TZID=Europe/London:20240229T160000 DTSTAMP:20260424T032623 CREATED:20240207T193951Z LAST-MODIFIED:20240207T193957Z UID:10002555-1709218800-1709222400@www.grc2020.com SUMMARY:How Can the Boardroom Boost Cyber Resilience? DESCRIPTION:REGISTER\n\n\n\n\nWe are in an era where cyber threats loom larger than ever\, with high-profile data breaches and other incidents emerging on a daily basis. \n\n\n\nThis has increasingly made cyber a business issue\, with security spending forecast to have reached $219bn in 2023\, according to the International Data Corporation (IDC). Alongside the growing risks of regulatory fines\, lawsuits and even personal liability for data breaches\, it has become imperative for boards to take ownership of cyber risk. \n\n\n\nHowever\, this is a significant challenge\, with most board members lacking cybersecurity expertise. \n\n\n\nThis webinar will delve into the intricate relationship between today’s boards and the risk management of their organizations\, highlighting how security teams can enable them to maintain control over confidential communications\, securely share information and foster effective collaboration. \n\n\n\nJoin us in this 30-minute session to learn: \n\n\n\n\nHow boards can set the tone for cybersecurity practices and fostering a positive security culture in organizations\n\n\n\nHow security leaders can ensure the boardroom gains sufficient expertise into cybersecurity to increase their oversight of cyber-risks\n\n\n\nHow to develop a robust cyber resilience strategy tailored to business needs  \n\n\n\n\nGRC 20/20 Analyst will be presenting at the event . . . \n\n\n\nMichael Rasmussen\n\n\n\nMichael Rasmussen is an internationally recognized pundit on governance\, risk management\, and compliance (GRC) – with specific expertise on enterprise GRC strategy and processes supported by robust information and technology architectures.  With 30+ years of experience\, Michael helps organizations improve GRC strategy and processes supported by the correct GRC technology architecture. This enables organizations to align GRC with the business and deliver effective\, efficient\, resilient\, and agile capabilities to the organization.  He is a sought-after keynote speaker\, author\, and advisor and is noted as the “Father of GRC” — the first to define and model the GRC market in February 2002 while at Forrester. \n\n\n\nWebinar Hosts\n\n\n\n\n\n\n\nDiligent created the modern governance movement. As the leading governance\, risk and compliance (GRC) SaaS company\, we serve 1 million users from over 25\,000 customers around the globe. Our innovative platform gives leaders a connected view of governance\, risk\, compliance and ESG across their organization. Our world-changing idea is to empower leaders with the technology\, insights and connections they need to drive greater impact and accountability – to lead with purpose. Our employees are passionate\, smart\, and creative people who not only want to help build the software company of the future\, but who want to make the world a more sustainable\, equitable and better place. \nShare this:\n Email a link to a friend (Opens in new window)\n Email\n \n Print (Opens in new window)\n Print\n \n Share on LinkedIn (Opens in new window)\n LinkedIn\n \n Share on X (Opens in new window)\n X\n \n Share on Facebook (Opens in new window)\n Facebook URL:https://www.grc2020.com/event/how-can-the-boardroom-boost-cyber-resilience/ CATEGORIES:Webinars ATTACH;FMTTYPE=image/jpeg:https://www.grc2020.com/wp-content/uploads/2024/02/1707324889576-e1707334697798.jpeg END:VEVENT END:VCALENDAR