Professional Documents
Culture Documents
OCEG-GRC-Series-Perform-final.2019
OCEG-GRC-Series-Perform-final.2019
All organizations must address threats, opportunities and requirements by encouraging desired conduct and conditions and
preventing what is undesired. Establish a mix of proactive, detective and responsive actions and controls, supported by strong
analytics based on strategic objectives, risk appetite and capacity, and risk decision-making guidance established by leadership.
ACTIONS CONTROLS
POLICY LIB
RARY INVESTIGATE &
MY POLICY
LIBRARY >
STIONS > ENSURE ACTIONS MANAGE ISSUES TRENDS
POLICY QUE
POLICIES >
& CONTROLS
COM PANY
RTS >
POLICY ALE
TASKS >
G>
MY TRAININ
CHANGES
I’ve got an email telling me OPERATIONS
3RD NEW RISK
to finish my training unit
before I travel next week. ? PARTY
LANDSCAPE
SUPPLY
CHAIN
ROOT CAUSE ANALYSIS
MANAGE
CHANGE REVISIT RISK ASSESSMENT
& OPPORTUNITIES
Contact info@oceg.org for comments, reprints or licensing requests ©2015 OCEG for additional GRC illustrations and resources visit www.oceg.org/resources
Licensed for noncommercial personal use by Erik Annafari (erikhighflier@gmail.com) on 6/25/2023, 3:25:05 AM