The Compliance Consortium, an international membership organization formed in June 2004 to promote effective governance, risk and compliance management (GRC), has published its operational approach for managing GRC requirements within the enterprise. Applicable to both public and private companies, the framework is designed to assist senior management and boards of directors in setting objectives for managing a wide range of compliance-related activities and instituting the programs needed to attain those objectives. This initial version is a "public draft" and is intended to invite constructive criticism and ultimately to build a broad consensus within the hundreds of companies that have registered as part of The Compliance Consortium Community over the past year.

"Unquestionably, the passage of the Sarbanes-Oxley Act has increased the focus for public companies on the areas of corporate governance, risk management and compliance," said Ted Frank, chairman of the Compliance Consortium advisory committee and president of Axentis. "It's important to remember that, for many companies, Sarbanes-Oxley is just one of hundreds of mandates from the SEC, FDA and other regulatory bodies that they must manage. Our goal with the creation of this framework is to help all organizations define, execute and ultimately profit from low risk and efficient governance, risk and compliance management, regardless of the specific regulation or statute."

Register or login for access to this item and much more

All Information Management content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access