No Result
View All Result
SUBSCRIBE | NO FEES, NO PAYWALLS
MANAGE MY SUBSCRIPTION
NEWSLETTER
Corporate Compliance Insights
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe
No Result
View All Result
Corporate Compliance Insights
Home Compliance

Predictions for Governance, Risk and Compliance in 2020

Key Trends in GRC for the Year Ahead

by Gaurav Kapoor
February 14, 2020
in Compliance, Featured
2020 infographic overlay on top of a world map

2020 promises to be a year of significant opportunity and change for organizations, as well as for the governance, risk and compliance (GRC) functions that support them. MetricStream’s Gaurav Kapoor discusses trends and changes to expect this year.

New innovations in artificial intelligence (AI) and other disruptive technologies, coupled with a growing focus on culture, integrity, risk-awareness and real-time decision-making will open up a range of opportunities and challenges for integrated risk/GRC functions to add greater value to their organizations.

With that in mind, we outline our predictions for GRC in 2020 and beyond:

Empowerment of the First Line

New generations of GRC software will be designed not just for the second and third lines of defense, but also for the front lines, empowering them to make decisions in-stream in their activities.

Imagine desk traders being automatically advised on the policy and governance implications of a trade in real time. Imagine traveling to a new country for business and having all of the required local policies and behavioral expectations instantly show up on your mobile app.

These are two examples of how well-integrated GRC will become in mainstream business activities.

Meanwhile, new GRC tools like AI chatbots will enable the front line to report issues and risks in an easier, more intuitive manner than ever before. For example, through a simple conversation with users, the bot will record front-line observations on risks and route them to the second line for further investigations. As more users begin to participate in this kind of reporting, richer risk-related insights will flow up to the management team, enabling them to more proactively mitigate risk.

Well-Harnessed Data: The New Gold

Having already amassed a treasure trove of information, organizations will increasingly leverage the power of analytics and AI to generate forward-looking insights that can catalyze business performance and growth.

New advancements in AI will enable decision-makers to predict risks and opportunities before they occur.

Natural language processing (NLP) tools will help decision-makers to harness the power of semantic analysis to connect the dots between thousands of issues and identify the best remediation actions.

The opportunities to add value through data will be truly immense. But as data lakes grow, so also will security-related risks. Adding to the challenge are new regulations, like GDPR, which impose stringent restrictions on data retention time and processing. To truly optimize the value of data in today’s environment, organizations will need to have strong data governance controls and policies in place.

GRC for AI: Governing the Bots

Data-driven technologies will open up a new world of opportunities, but they will also amplify critical risks, particularly around ethics, biases and integrity.

As organizations strive to manage these risks, GRC functions will be called in to audit AI algorithms, build accountability and transparency into AI applications, establish appropriate controls and policies and integrate AI risk management into broader enterprise risk management (ERM) programs.

No longer can one assume that technology is neutral. Ethical choices will need to be consciously embedded into AI applications right from the start. And it will have to be a collaborative effort involving risk, compliance and legal functions, as well as software engineering.

For further reading: Ethical AI is Built on Transparency, Accountability and Trust

Complex Global Business Ecosystems Give Rise to Complex Risks

The modern enterprise ecosystem is evolving into a highly intricate and interdependent global network of suppliers, partners, vendors, stakeholders, regulators and customers — all working together to ensure the smooth movement of goods, data and services.

In this profoundly interconnected ecosystem, almost everything we do has some level of third-party involvement, whether we know it or not. And with every third-party relationship comes new risks.

In fact, a leading global payments giant has a system in place to monitor the risks of not just thousands of third parties, but also numerous fourth parties, including processors, data storage entities and digital wallet operators. It’s an enormous challenge, but absolutely critical at a time when some of the biggest security breaches are being caused by third-party vulnerabilities.

The more effectively organizations can understand and manage these risks the better their resilience will be.

Bringing It All Together: Understanding the Interconnectedness of Risk

Traditional siloed risk programs are simply no longer effective in a dynamic risk environment; organizations now need to understand risks not in isolation, but in relationship to each other.

Heading further into 2020, the focus will be on building an overarching integrative layer in risk programs that can map the relationships between different types of risks while also tying them back to business objectives. This integrated approach will demand that audit, risk management, and compliance teams work together more closely. It will also require an integrated risk management software infrastructure that can act as a “general ledger” (i.e., a single, transparent system of record for risks, incidents and responses across the enterprise).

If implemented effectively, this approach will enable organizations to predict risks with greater accuracy while simultaneously capitalizing on the opportunities that truly matter.

Read MetricStream’s whitepaper, “The Future of Integrated Risk Management”

A New Stage of Warfare Begins

If the recent escalating tensions between various nation states are any indicator, we seem to be entering a new phase in warfare where battles will be fought not on land or sea, but in cyberspace.

For sovereign nations, cyberwarfare is a way to demonstrate power without bloodshed. Yet, for companies caught in the crossfire, it represents a whole new level of risk.

Cyberweapons can infiltrate and shut down entire networks and infrastructures, leaving organizations in the lurch. These weapons are affordable and within reach of not just nation-state actors, but also cybercriminals eager to take advantage of poor cyber hygiene.

Given the ramifications of these issues and the scale at which they can impact companies, organizations will need to step up their cyber resilience efforts.


Tags: Artificial Intelligence (AI)Corporate Culture
Previous Post

Thoughtful Disagreement as a Competitive Advantage

Next Post

New Year, New Laws Prompt Changes in Sexual Harassment Training

Gaurav Kapoor

Gaurav Kapoor

Gaurav Kapoor is Chief Operating Officer at MetricStream, where he is responsible for sales, marketing, customer advocacy, the partner ecosystem and ComplianceOnline.com. He also serves on the board of Regalix, a digital innovation and marketing company. Until 2010, he served as the CFO of MetricStream. During this time, he led the company’s financial strategy as well as sales, marketing and partnerships. He also launched ComplianceOnline.com, a MetricStream business unit which has grown to become a leading online GRC community and content property. Previously, Gaurav held the position of Vice President at OpenGrowth and ArcadiaOne. Prior to that, he spent several years in marketing, operations and business roles at Citibank in Asia and the U.S. Gaurav has a bachelor’s degree in Technology (with Honors) from the Indian Institute of Technology (IIT), a degree in Business from FMS, Delhi and an MBA from the Wharton Business School, University of Pennsylvania, where he graduated as a Palmer Scholar.

Related Posts

Fox_Incentives in Compliance_f

Incentives in Compliance

by Corporate Compliance Insights
January 23, 2023

Learn more about how compensation can reinforce compliance culture (or not) Encouraging Good, Discouraging Bad Incentives in Compliance What’s in...

cci top 10 stories collage

Top 10 Compliance Stories of 2022

by Jennifer L. Gaskin
December 7, 2022

The more things change, the more they stay the same. This time last year, we summarized the top 10 ESG...

ai bias_f

Still Racist After All These Datasets: Once Bias Is Baked Into Your AI, It’s Hard to Root Out

by Nigel Cannings
November 9, 2022

Spending on artificial intelligence across all sectors is expected to more than double by 2025, but Nigel Cannings of Intelligent...

best employees speak up

Why Our Best Employees Don’t Speak Up

by Courtney Sander
November 2, 2022

Are we conditioning our employees not to speak up? The traits present in our best employees might make them less...

Next Post
man with hand on woman's knee

New Year, New Laws Prompt Changes in Sexual Harassment Training

Compliance Job Interview Q&A

Jump to a Topic

AML Anti-Bribery Anti-Corruption Artificial Intelligence (AI) Automation Banking Board of Directors Board Risk Oversight Business Continuity Planning California Consumer Privacy Act (CCPA) Code of Conduct Communications Management Corporate Culture COVID-19 Cryptocurrency Culture of Ethics Cybercrime Cyber Risk Data Analytics Data Breach Data Governance DOJ Download Due Diligence Enterprise Risk Management (ERM) ESG FCPA Enforcement Actions Financial Crime Financial Crimes Enforcement Network (FinCEN) GDPR HIPAA Know Your Customer (KYC) Machine Learning Monitoring RegTech Reputation Risk Risk Assessment SEC Social Media Risk Supply Chain Technology Third Party Risk Management Tone at the Top Training Whistleblowing
No Result
View All Result

Privacy Policy

Founded in 2010, CCI is the web’s premier global independent news source for compliance, ethics, risk and information security. 

Got a news tip? Get in touch. Want a weekly round-up in your inbox? Sign up for free. No subscription fees, no paywalls. 

Follow Us

Browse Topics:

  • CCI Press
  • Compliance
  • Compliance Podcasts
  • Cybersecurity
  • Data Privacy
  • eBooks Published by CCI
  • Ethics
  • FCPA
  • Featured
  • Financial Services
  • Fraud
  • Governance
  • GRC Vendor News
  • HR Compliance
  • Internal Audit
  • Leadership and Career
  • On Demand Webinars
  • Opinion
  • Resource Library
  • Risk
  • Uncategorized
  • Videos
  • Webinars
  • Well-Being
  • Whitepapers

© 2022 Corporate Compliance Insights

No Result
View All Result
  • Home
  • About
    • About CCI
    • Writing for CCI
    • NEW: CCI Press – Book Publishing
    • Advertise With Us
  • Explore Topics
    • See All Articles
    • Compliance
    • Ethics
    • Risk
    • FCPA
    • Governance
    • Fraud
    • Internal Audit
    • HR Compliance
    • Cybersecurity
    • Data Privacy
    • Financial Services
    • Well-Being at Work
    • Leadership and Career
    • Opinion
  • Vendor News
  • Career Connection
  • Events
    • Calendar
    • Submit an Event
  • Library
    • Whitepapers & Reports
    • eBooks
    • CCI Press & Compliance Bookshelf
  • Podcasts
  • Videos
  • Subscribe

© 2022 Corporate Compliance Insights

Welcome to CCI. This site uses cookies. Please click OK to accept. Privacy Policy
Cookie settingsACCEPT
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT