Newsletter | Volume 1

Issue I
Issue II
Issue III
Issue IV
Issue V
Issue VI
Issue VII
Issue VIII
Issue IX
Issue X
Issue XI

click here to

Subscribe to our newsletter



To Unsubscribe click here

The What, Why and How of implementing a comprehensive GRC plan



Let the framework and roadmap of Copenhagen Compliance® achieve an increased overall business performance. This is best done by 1. Leading (tone-at-the-top), 2. Planning (prepare a GRC technology plan), 3. Performing (integrating GRC processes), 4. Enabling (monitoring GRC processes) and 5. Auditing (internal controls) within the area of governance, risk management, compliance, and IT-security (GRC). Our principles, policies and processes are based on on sustainability, integrity and ethics.

It is the director's and management's responsibility to ensure total compliance. Therefore it is advisable to start with a GRC plan because organizations concerned with information governance and risk management must prioritize readiness and be prepared to respond to all sorts of questions.

What
Build on the current skills to realize higher individual and organizational performance Integrating the components for increased professional responsibility based on the companies Code of Conduct.

Why
All businesses must address the increasingly complex GRC issues and add value by contributing to the overall business performance. Integrating GRC in the business processes will increase acceptance and monitoring of ownership and responsibility for each individuals decisions and actions and create awareness for the company’s values and create highest standards of ethical and professional conduct.

How
  • Building respect, credibility and strategic importance for the vision and mission of the business
  • Assisting the global organization to increase the overall business principled performance to accomplish the objectives to develop the brand value of the company
  • Inform and educate all employees on the principles and practices and the companies governance structure, roadmap and framework, or develop one.

Key Areas
Develop your own customized global governance standards, tools and resources (roadmap and framework) to help govern, assure and manage performance, risk and compliance.

Implement your technology & assessment methodology or our own CERP methodology to improve the ability to evaluate and monitor the functionalities of the focus areas. The attached brochure focusses on corruption issues but can easily be used for GRC issues with similar priorities.

Environmental Monitoring and Reporting systems to help monitor, analyze, record, and report CSR activities focused on compliance, manage environmental controls and conditions, and assessing the environmental impact on operations, strategies, and plans.

Information/IT Risk & Security management systems and framework that govern risk, security, controls and compliance to automate the monitoring of the focus areas within the GRC framework.

Focus areas:
  • Culture, Objectives, Commitment, Roles and Accountability, Transparency,
  • Codes of Conduct, Policies, Guidelines, Training and Education, Incentives and Rewards, Stakeholder Relations, Responsive Actions & Controls, Internal Investigations
  • Health & Safety, IT-Risk & Security, Quality Risk Management, Vendor/Supply-Chain Management
  • 3rd-Party Compliance, Crisis Management and Response, Systemic Improvement, Information Management, Communication, Technology
  • Enterprise-Wide Audit on Brand & Reputation, Business Continuity, Ethics, Corporate Social Responsibility Environmental, Finance & Treasury

Therefore the GRC plan and groundwork based on the above procedure will design a GRC strategy to assist in the development of an integrated GRC road map outlining the GRC components to deploy and the activities and resources required to deploy the whole range of GRC functionality.