GOVERNANCE, RISK AND COMPLIANCE Assessment, development and implementation

GOVERNANCE, RISK AND COMPLIANCE Assessment, development and implementation

GOVERNANCE, RISK AND COMPLIANCE Assessment, development and implementationGOVERNANCE, RISK AND COMPLIANCE Assessment, development and implementation

Yield Results

Collaborative Pursuits Yield the Best Results

Our service offerings are designed to engage productive collaboration between clients and highly-specialized governance, risk and compliance (GRC) professionals. Our GRC collaborators are experienced in balancing business objectives with due diligence activities to meet oversight expectations. 

Client services are tailored to the business needs, level of regulatory scrutiny and organization maturity. Our highly experienced consultants have end-to-end assessment, development and execution expertise for effective communication with senior management and c-suite action planning. 

Potential Areas of Collaboration:

  • GRC Programs and Practices: assess documented policies & procedures; perform gap analysis with current operational procedures; collaborate with management on proposed changes and implementation approaches.

  • GRC Framework: consistent with industry standards, build an integrated cross-business program for improved risk and control posture and overall enterprise efficiency.

  • Planned Audit or Regulatory Asssessment: provide the business with targeted or enterprise-wide assessment of governance, risk and compliance in advance of an anticipated assessment by an internal/external auditor or regulatory supervisor.  

  • Existing Audit and Regulatory Findings: collaborate with management to evaluate findings, stream-line thematic concerns, track action plans, remediation efforts, testing and assess effectiveness of business activities to meet industry standards and regulatory expectations.

Collaborative Fields of Expertise

  • CyberSecurity including NIST, SANS, NYCRR500
  • Data Governance  including Privacy, Regulatory Reporting, Data Lineage, Data Warehousing, Risk Management, Data Mapping, Data Conversion
  • Financial Regulations:  including CCAR, Volker, Basel,  KYC, AML, GLBA, SOX, FFIEC
  • Supervisory Oversight:  including SEC, FINRA, Fed, OCC
  • IT Auditing including Cloud, GIT, Infrastructure, Operating Systems, Network, Database, Middleware, Application
  • Identity and Access Management (IAM)
  • 3rd Party Risk Assessement/Oversight
  • Product Development
  • Industry/Regulatory Standards: PCI, HIPAA, COSO, COBIT
  • Program Management 
  • Software Development Lifecycle (SDLC)
  • Technical Writing
  • Social Media

Breadth of Industry Experience

  • Large Banking Institutions and Bank Holding Companies
  • Community and Regional Financial Institutions
  • Fortune 100 Companies (High Tech, Financial Services, Telecommunications)
  • Health Services
  • Industrial
  • Aerospace

Learn More

Collaborative Pursuits Yield the Best Results