Theme: Governance Risk and Compliance

Compact 2022/4 | Digital Trends & Compliance

The sustainability reporting journey of Swiss luxury watchmakers

A close look at the Swiss luxury watch industry's sustainability scorecard and the role innovation plays in addressing related consumer expectations

By: Sergio Galanti | Elias Evers | Jana Valkovicova

The theme of sustainability has gained momentum in recent years as companies are pushed by regulatory pressure to step up…
Compact 2022/3 |
Regulations & models

Control by Design: risk-free processes as the holy grail

An important concept for saving costs and increasing your risk management. Nice theory, but what about practical application?

By: Thomas Schoonhoven MSc | Bart Olieman | Mourad Fakirou MSc RE | Robin Polder MSc

Risk management is gaining an increasingly prominent role within organizations. In a rapidly changing environment, increasing digitalization and more stringent…
Compact 2022/3 |
Regulations & models

DORA: an impact assessment

By: Ali Alam RE CISA | Arno Kroese Msc RE RA | Ishan Chandra | Mourad Fakirou MSc RE

Due to the rapid use of digitization within the European financial sector, the European Commission introduces the Digital Operational Resilience…
Compact 2022/2 |
IT hypes & trends

ESG is here to stay: is your policy management framework ready?

Why a lackluster policy framework will create steep hurdles for ESG success

By: Rebecca Kozlowski

Introduction The world has experienced continuous change over the last few years, with it sometimes being difficult to know where…
Compact 2022/2 |
IT hypes & trends

Continuous control monitoring: the trend and how to get on board

How SAP solutions can be leveraged for continuous control monitoring

By: Sylvester van der Giesen MSc | drs. Dennis Hallemeesch RE

How does the market think? In a survey about Governance, Risk and Compliance ([KPMG19]), 57% of participants stated that only…
Compact 2022/2 |
IT hypes & trends

Incorporating ESG in risk management

Transforming internal controls framework for ESG reporting

By: drs. Jeroen Bolt RC | Arushi Paliwal CA | Urvashi Aggarwala

Introduction As a Risk & Controls professional, you sometimes find yourself in the following situation, “You just finished the year-end…
Compact 2022/1 |
ESG & GRC: how to maneuver?

Emerging global and European sustainability reporting requirements

Navigating the complexity and getting ready

By: Anton Zhigalov | Gijs de Graaff

This article looks at new developments in sustainability reporting on a global and European level. A global multi-stakeholder acknowledgment for…
Compact 2022/1 |
ESG & GRC: how to maneuver?

Trust by Design: rethinking technology risk

Enhancing technology risk management in agile environments to ensure auditable trust!

By: Swatantra Kumar MTech, PGDAC, BE | Stefan Jacobs MSc | Tom Koehler

In society, there is a growing call for trust in technology. Just think about the data leaks and privacy issues…
Compact 2022/1 |
ESG & GRC: how to maneuver?

An Internal Control Framework in a complex organization

An example from the unruly police practice

By: René s'Jacob RA | Claudia Voll

Complex organizations need insight in their system of internal control. Based on this insight, the operation of that system can…
Compact 2022/1 |
ESG & GRC: how to maneuver?

Implementing a new GRC solution

Can anybody share some lessons learned?

By: drs. Dennis Hallemeesch RE | Dave Günthardt MSc RE | drs. Hugo Rothengatter RE CISA

Managing risks, controls and compliance has become an integral part of the business operations of any organization. The intent to…
Compact 2022/1 |
ESG & GRC: how to maneuver?

Mastering the ESG reporting and data challenges

How to master the ESG reporting and data challenges using a structured approach

By: Marco van Delft | Chris Hoffman RE RA | Eline Verhaar | Paul Pieroen

Companies are struggling how to measure and report on their Environmental, Social, and Governance (ESG) performance. How well a company…
Compact 2022/1 |
ESG & GRC: how to maneuver?

Privacy audits

Are privacy audits relevant for GRC and ESG reporting?

By: Maryam Amaador | drs. Henk Hendriks RE CISA

The importance of data privacy has increased incredibly in the last couple of years. With the introduction of the General…
Compact 2021/2 |
The path to data-driven organizations

No AI risk if you don't use AI? Think again!

By: Dr. Alexander Boer

AI-related risks regularly make news headlines and have led to a number of legislative initiatives in the areas of privacy,…
Compact 2021/1 |
Cloud Computing

Handling data transfers in a changing landscape

By: Laura Huijts LL.M. CIPP/E CIPM CIPT | Daniela Gonzalez Riedel CIPP/E

Although privacy has long been a discussion point within technology, its role in the use of Cloud services has not…
Compact 2020/3 |
Business Platforms & Internet of Things

Cross-system segregations of duties analysis in complex IT landscape

Ten lessons learned based on project at financial services company

By: | Pascal van Vugt MSc

This article explains the importance of access controls and segregation of duties in complex IT landscapes and elaborates on performing…
Compact 2020/3 |
Business Platforms & Internet of Things

Exploring digital: empowering the Internal Control Function

Insight into four different digitization options to keep up with today's fast-paced world

By: Sylvester van der Giesen MSc | Vincent Speelman MSc

The Internal Control Function, or second line of defense is a vital part of the organization tasked with devising and…