IRM GRC SIG session on 1 May has Dr David Hillson talking about ABC meeting GRC - http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-grc-sig-session-on-1-may-has-dr-david-hillson-talking-about-abc-meeting-grc/

http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-grc-sig-session-on-1-may-has-dr-david-hillson-talking-about-abc-meeting-grc/

You can now book your place for the next IRM GRC Special Interest Group (SIG) session on 1 May at http://bit.ly/1dMZgIv

This session continues our exploration into risk culture and the possible role it plays in effectively orchestrating governance, risk and compliance activities.

It covers David’s latest thinking on risk culture, followed by a discussion about its relevance to GRC, or not.  Specifically it examines the links between risk culture and GRC implementation, based on the A-B-C Model (ie Attitudes-Behaviour-Culture).

Some people see GRC as a set of external Behaviours, but of course these are driven by individual Attitudes as well as not by focusing only on the external B, but by also addressing the A and C – right?

Overview:

Everyone knows that culture is important – but why?  What about risk culture?  What should you do if your project or organisation is too “risk-averse”?

Starting from first principles, this presentation unpacks the key characteristics of culture, explaining what it is – and what it is not.  Culture arises from repeated Behaviour – if we do the same things over and over again we will develop a shared approach to “how we do things around here”.  But behaviour is based on our underlying Attitudes – how we think shapes our actions.  This gives us the A-B-C model of culture: Attitudes shape Behaviour which forms Culture.  There are also feedback loops as the prevailing Culture also influences how we think and act.

The A-B-C model is also true of our approach to risk.  If we want to develop a risk-mature culture, we need to behave in an appropriate way towards risk.  But this in turn will be driven by our risk attitudes.

This presentation explores the central role of risk attitude as a key underlying driver of risk behaviour and risk culture, and shows how to change risk culture by actively managing risk attitude.

Biography:

Dr David Hillson is The Risk Doctor, and Director of The Risk Doctor Partnership. He is recognised internationally as a leading thinker and expert practitioner in risk management. He writes and speaks widely on the topic, with nine books and many papers.

David Hillson has been working in the area of risk culture, risk appetite and risk attitude for about a decade, and has published his ground-breaking insights on these topics in a range of books.

You can book your place NOW using this link: http://bit.ly/1dMZgIv, either for a place in London at the offices of RBS or via our Audio/Weblink.

More… http://bit.ly/1dMZgIv

 

IRM GRC SIG session on 13 September discussing ethical aspects of corporate governance regulation and guidance - http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-grc-sig-session-on-13-september-discussing-ethical-aspects-of-corporate-governance-regulation-and-guidance/

http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-grc-sig-session-on-13-september-discussing-ethical-aspects-of-corporate-governance-regulation-and-guidance/

You can now book your place for the next IRM GRC SIG Keep-in-Touch call on 13 September at https://irmgrcsigseptember.eventbrite.co.uk

The purpose of this month’s informal Keep-in-Touch session is to review and discuss feedback on the recently published report entitled “Review of the Ethical Aspects of Corporate Governance Regulation and Guidance in the EU”, available for download from this location:

http://www.ibe.org.uk/userfiles/op8_corpgovineu.pdf

The report is being shared as it relates to some of our recent SIG discussions about the importance of governance/leadership in supporting an effective orchestration/integration of governance, risk and compliance within an organisation.

More … http://theirm.org/events/GRC_SIG.htm

===========================================================

More information from original FERMA email press release:

Questions of ethics, or the ‘right way to run a business’, are inherent in all aspects of corporate governance, including the way the board conducts itself. Ethical choices are relevant to the business strategies that boards pursue and the way that they direct and structure the business to achieve them.

A new report, A Review of the Ethical Aspects of Corporate Governance Regulation and Guidance in the EU published today by the Institute of Business Ethics, in association with ecoDa, the European Directors’ Association, examines corporate governance policy debates and frameworks.

Its findings draw attention to a notable lack of explicit reference to ethical imperatives, and so raise questions about why this is the case, whether this should be addressed and how.

This Occasional Paper explores the extent to which, in legislation, frameworks and codes for corporate governance across the EU and within its member states, there are explicit statements or requirements for business to be governed in line with ethical principles or commitments.

Julia Casson, author of the report, said: “We began this report wanting to understand whether there was guidance for companies in governance policies, at national and EU level, on ethical business practice. Although we did find similarities in corporate governance requirements around practice and certain issues, there seems to be a general lack of ethical language in corporate governance provisions. This is in spite of the fact that boards are expected to set the values which will guide their company’s operations.”

For some key governance issues that boards have been expected to address, the explicit driver is most often given in terms of what is ‘good for business’ rather than engagement with any moral imperative. This is the case even though what is generally viewed as unethical behaviour, including at the most senior levels, has led to business failure on numerous occasions. The link has yet to be explicitly made in corporate governance discourse that what is ethical is very often good for business, or at least that what is unethical generally impacts negatively on business.

At the member state level, the beginnings of a greater focus on board behaviour and conduct can be seen, especially in guidance for directors.

Some governance codes contain ‘various rules of conduct’ ( i.e. commitment, leadership, discretion, independent judgment, integrity, acting in the corporate interest and acting in the interests of stakeholders) and refer to behaviours required by boards.

Patrick Zurstrassen, Chairman of ecoDa said: “The purpose of governance can be said to be to encourage companies to make robust decisions, manage risk properly and account to those that provide their capital. To complete this approach, it is essential to get individual board members with a great sense of ethics and a collective mindset in line with the company’s values”

Philippa Foster Back OBE, Director of the IBE said: “Attention to ethics is increasingly a core feature of boardroom agendas. Many companies recognise business ethics, sustainability and social responsibility, and also boardroom ethics, as characterising the right way to run a business as well as being essential for long term success. This is in spite of the apparent lack of explicit engagement at EU level with ethical principles in corporate governance guidance, and the limited requirement, or indeed encouragement, that boards operate with high ethical standards,.”

More … http://www.ibe.org.uk/index.asp?upid=52&msid=8

IRM GRC SIG event on 25 July has implementation barrier focus - http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-sig-event-on-25-july-has-implementation-barriers-focus/

http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-sig-event-on-25-july-has-implementation-barriers-focus/

You can now book your place for the next IRM GRC SIG event on 25 July at http://irmgrcsigjuly13.eventbrite.co.uk

 

The main focus of this session is to reflect on what we have discovered so far, and to discuss in more detail what we now think the barriers are to implementing a more coordinated approach to GRC.

IMPORTANT: as this session is being kindly hosted in the new Canary Wharf offices of Shell, it is essential for security reasons that if you intend to attend the event in person that you book your place by no later than 17:00 UK time on Monday, 22 July 2013: http://irmgrcsigjuly13.eventbrite.co.uk; the deadline for booking virtual tickets (for participation by Audio and WebLink) is 48 hours later at 17.00 UK time on Wednesday.

I sincerely hope you can participate in the session, either in person or virtually. In the meantime, if you have any queries or questions about this event or any other aspect of our SIG activities then do not hesitate to contact me.

Best Wishes, Robert
Chair, IRM GRC SIG

Email: robert_toogood@chaordicsolutions.co.uk

IRM GRC SIG Q&A session with Norman Marks on 30 May 2013 - http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-grc-sig-qa-session-with-norman-marks-on-30-may-2013/

http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-grc-sig-qa-session-with-norman-marks-on-30-may-2013/

This is a special event not on the IRM GRC SIG’s previously published programme … and is an unexpected opportunity to spend some extended time with Norman Marks, who is an Honorary Fellow of the Institute of Risk Management for his contribution to the risk management field.

Some more background about Norman: he has been a practitioner and thought leader in internal audit, risk management, compliance and ethics for a long time. During his career, he has led large and small internal audit departments, been the Chief Risk Officer and Chief Compliance Officer, and managed IT Security and governance functions. Norman makes the point that in theory, he has now retired from SAP, where he was an evangelist for “better run business”, risk management, internal audit, GRC and related business processes such as business analytics. However, he continues to blog, write, and speak – and mentor individuals when he can.

The session is scheduled for 13:30 to 15:30 London/UK time.  You can book your place using this link: http://irmgrcsigmay213.eventbrite.co.uk/#

The way the SIG is running the particular event is that, due to space and other restrictions, a few of the Steering Group members will meet face-to-face with Norman in London but we open up the discussions to everyone else in the SIG via an audio link.

If you have specific quesitons you would like to ask Norman please send them to me ASAP at my normal email address of robert_toogood@chaordicsolutions.co.uk by no later than end of business on 24 May so we can collate, finalise the agenda and share with Norman in advance of our session.

I hope you will be able to join us for what will be a very informative and lively debate. In the meantime, you can read more about Norman here on his website: http://normanmarks.wordpress.com/about/

Presentation deck from recent IRM GRC SIG session now available for download - http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/presentation-deck-from-recent-irm-grc-sig-session-now-available-for-download/

http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/presentation-deck-from-recent-irm-grc-sig-session-now-available-for-download/

Last week, I chaired a really interesting Institute of Risk Management (IRM) GRC SIG session in London… speakers representing blue-chip organisations like Shell, WorldPay and Raytheon as well as industry recognised GRC pundit, Michael Rasmussen, all shared their real-life experiences of implementing a coordinated approach to governance, risk management and compliance.  The presentation deck we used can be downloaded from the SIG’s website at http://theirm.org/events/GRC_SIG.htm.

Best Wishes, Robert
Chair, IRM GRC SIG

Email: robert_toogood@chaordicsolutions.co.uk

Personal Website: www.robertjtoogood.com

Tel: +44 (0)1983 617241
LinkedIn: http://uk.linkedin.com/in/roberttoogood

 

IRM GRC SIG event on 25 April has OCEG focus - http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-grc-sig-event-on-25-april-has-oceg-focus/

http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/irm-grc-sig-event-on-25-april-has-oceg-focus/

I am pleased to announce that you can now book your place for the next IRM GRC SIG event on 25 April at http://irmgrcsigapril13.eventbrite.co.uk

The main focus of this session is to hear “real-life” stories from users/businesses that have previously implemented or are currently implementing an OCEG “Principled Performance” and/or Capability Model based approach to Governance, Risk Management and Compliance.…. and the agenda is currently looking like this:

1. Welcome, Housekeeping and Session Guidelines

2. General Update/News

3. Case Study: GRC at Shell

4. Introduction: OCEG, Principled Performance and GRC Capability Model

5. Case Study: OCEG at Heineken International BV

6. Break

7. Case Study: OCEG at Raytheon

8. Review and Conclusions

9. AOB

10. Next Session

11. Close

IMPORTANT: as this session is being kindly hosted in the new Canary Wharf offices of Shell, it is essential for security reasons that if you intend to attend the event in person that you book your place by no later than 17:00 UK time on Tuesday, 22 April: http://irmgrcsigapril13.eventbrite.co.uk

I sincerely hope you can participate in the session, either in person or virtually. In the meantime, if you have any queries or questions about this event or any other aspect of our SIG activities then do not hesitate to contact me.

Best Wishes, Robert
Chair, IRM GRC SIG

Email: robert_toogood@chaordicsolutions.co.uk

Are you willing to share your OCEG “Principled Performance” related experiences at the next IRM GRC SIG session in April? - http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/are-you-willing-to-share-your-oceg-principled-performance-related-experiences-at-the-next-irm-grc-sig-session-in-april/

http://www.chaordicsolutions.co.uk/blog/irm-grc-special-interest-group/are-you-willing-to-share-your-oceg-principled-performance-related-experiences-at-the-next-irm-grc-sig-session-in-april/

The recently formed IRM GRC SIG is currently planning its next face-to-face session that will be held in London (and via the web) on the afternoon of 25 April 2013.

The focus of this session will to hear “real-life” stories from users/businesses that have previously implemented or are currently implementing an OCEG “Principled Performance” based approach to Governance, Risk Management and Compliance.

So are YOU willing to share any experiences in this area? If so, please let either me know me know via email at robert_toogood@chaordicsolutions.co.uk.

More … http://www.theirm.org/events/GRC_SIG.htm