For Security & Risk Professionals

Primary Analyst Photo	Document Information	Rate this Document
	October 7, 2008 Best Practices: Implementing A Governance, Risk, And Compliance Program by Chris McClean with Stephanie Balaouras, Khalid Kark, Alissa Dill, Lauren E Nelson

This is an excerpt

Executive Summary

Software applications for managing governance, risk, and compliance (GRC) continue to mature with impressive features and functions. Even more impressive are the organizational and strategic advancements companies are making by closely linking these three traditionally distinct functions; benefits include reduced risk exposure, lower audit costs, better overall compliance, and more informed decision-making. To identify the best practices for implementing a GRC program and realizing these benefits, Forrester interviewed 21 professionals who have demonstrated success in this area and 23 software vendors that market GRC products. To replicate similar success in your GRC program, you will need to focus on selling GRC value, practicing good GRC project management, and embedding GRC into corporate culture.

TABLE OF CONTENTS

• GRC Is A Light At The End Of A Very Daunting Tunnel
• GRC Implementation Best Practices
• Best Practice No. 1: Become A GRC Salesperson
• Best Practice No. 2: Remember The Basics Of Project Management
• Best Practice No. 3: Embed GRC Into The Culture
• Forrester's GRC Implementation Next Practices
• Identifying Your Challenges
• Supplemental Material
• Related Research Documents

This is an excerpt

Buy Risk-Free

Price: US $499

Our Service Guarantee: If you are not completely satisfied with this document, notify Forrester within 24 hours of purchase for a full refund.

Already a Forrester Client?
Log in to read this document.