Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
SHEET
GRC in
the GCC –
Beyond Control
By Peter Kohut
O
rganisations across the principle to unify various control and important question needs to be addressed.
globe use governance, risk assurance functions, with the objective of And that is who should actually be
and compliance (GRC) to leveraging commonalities to strengthen interested in GRC?
enhance their competitive overall effectiveness and improve efficiency. The GRC movement started with large,
advantage, positively GRC is, therefore, more than the sum of complex, globally operating organisations,
influence their valuation and create an agile its constituents. It realises that to govern, in particular, from the highly regulated
or high-velocity organisation. So what exactly control and assure an organisation in an financial industry. These adopters of GRC
is GRC and why should organisations in the optimal manner, it means considering the realised that the spend on governance and
Gulf region be interested? system of governance, risk and compliance. assurance functions had spiralled out of
Competitive advantage, increased This system view emphasises the intricate control and the complex web of related
valuation, agile enterprise, high-velocity relationships between the individual assurance activities was full of holes,
organisation…these are not necessarily functions, their dependencies, and effects causing the overall approach to be less
terms that spring to mind when discussing on each other to form a holistic view. than effective.
governance, risk or compliance. But they KPMG defines GRC as “an integrated So, does that mean that GRC is only useful
might, if one talks about GRC. The fact framework that unifies governance, risk, for large, established, complex corporations?
that the acronym has been established as compliance and assurance functions to The answer is a resounding no.
quasi-standard, at least in certain industries, achieve a consistent and holistic vision A common phrase we often hear uttered
is indication that there is more to GRC than across the organisation”. by executives engaged in costly initiatives
meets the eye. Before discussing how the holistic to improve their existing governance and
GRC represents a framework, a system view of GRC can achieve the value assurance framework as part of a GRC
management philosophy, and a guiding propositions briefly outlined, another movement is: “If I could just design my
BALANCE
SHEET
TheEDGE 71
BALANCE
SHEET
72 TheEDGE