What’s shaping the future of GRC? At Ascend London 2024, that question wasn’t just asked — it was answered. Whether you’re wrestling with fragmented data, seeking organizational buy-in, or trying to leverage AI and automation, the conversations and insights shared at our first UK event provided actionable strategies for Resolver’s GRC community.
A few weeks ago, I had the opportunity to join risk and compliance leaders from across industries at Ascend London, held at the historic City of London Club. The event was a perfect backdrop for discussions about how technology, especially Resolver’s solutions, is transforming GRC. From our product roadmap sessions to candid customer panels, the day offered clear takeaways for anyone looking to elevate their GRC strategy. Here are some of mine.
1. Organizational buy-in: The foundation of every GRC strategy
The importance of securing organizational buy-in for the risk function was a recurring theme throughout Ascend London 2024. Across every session — whether on AI, data integration, or risk intelligence — one message stood out: Risk professionals must position themselves as strategic partners, not blockers.
When risk teams truly understand the business’s objectives, they can align their strategies to help the organization meet its ambitious goals while operating within acceptable risk levels. This partnership enables risk professionals to support innovation confidently, demonstrating how their work directly contributes to growth and success.
2. The evolution from risk management to risk intelligence
One of the day’s central themes was one of my favourite topics — the ongoing shift from traditional risk management toward driving risk intelligence across GRC programs. Many of our customers are moving beyond tracking risks and controls. They are leveraging risk data to generate insights that allow them to predict and mitigate potential threats before they escalate.
Resolver plays a vital role in this transformation by helping organizations centralize their risk, compliance, and incident data into a unified, actionable system. This shift allows companies to move from reactive risk management to a more proactive, intelligence-driven approach that helps them stay ahead of emerging threats, rather than constantly playing catch-up.
3. Bridging the gaps with data integration
One challenge many attendees raised was fragmented risk data. Siloed data across compliance, audit, or incident management functions slows down decision-making and leaves critical gaps.
Resolver’s integrated risk solutions address this by centralizing all risk-related data into one platform. By bridging those gaps, teams make smarter decisions faster, keeping risk strategies tightly aligned with business goals.
4. Leveraging AI and automation to drive strategic value
AI has transformed the way risk and compliance teams operate, particularly in the last two years. While organizational buy-in ensures alignment with business goals, technology helps risk teams become even more effective partners by automating routine tasks and freeing up time for strategic initiatives.
For example, Resolver’s AI capabilities in our regulatory compliance solution allow teams to automate routine tasks like requirements summarization and document tracking. This means less time spent on manual data collection and more time spent on strategic work that supports innovation and aligns with business goals. Teams are freed up to focus on what truly matters — ensuring compliance while helping the organization take calculated risks and move forward with confidence.
5. Turning insights into action with effective reporting
Something that came up in our customer panel, featuring experts from Network Rail, Hiscox, and Pantheon, was an increase in tracked issues. Meaning after implementing Resolver, the number tracked issues went up — not because new problems arose, but because existing issues were finally being captured, documented, and addressed.
This is the value of effective reporting. By centralizing risk data, teams can provide senior leadership and regulators with a clear view of risk exposure, ensuring decisions are based on accurate insights. What might seem like an uptick in issues is actually a positive outcome — previously overlooked risks are now being actioned and resolved, ensuring proper follow-up and accountability. It’s a reminder that visibility drives a more proactive risk culture.
6. Networking as a catalyst for GRC innovation
While the sessions were insightful, the real magic happened during the informal conversations throughout the day. Often, risk professionals find themselves bouncing ideas off other second or third-line functions within their own organization. While that can be helpful, it limits you to an internal perspective. Events like Ascend London provide a much-needed opportunity to connect with peers across the industry, offering fresh insights into how others are tackling similar challenges.
During informal conversations, whether over lunch or in the Insider Collaboration Session, attendees shared how they’ve enhanced their programs and where their focus lies as they continue to evolve their risk strategies. This sense of community is invaluable — it allows you to see how others are addressing the same issues you’re facing, and to bring those ideas back to your own organization.
7. Planning for reputational risk: Lessons from Leeds
One of the standout moments at Ascend London was the session focused on managing social media risks and preparing for large-scale reputational events, inspired by insights from our team in Leeds. While social media monitoring may not traditionally fall under the risk team’s purview, this discussion highlighted how quickly reputational risks can escalate when left unchecked.
The conversation highlighted the importance of staying ahead by understanding what your customers or users are saying in real time. Planning for these events is critical — because if you’re caught off guard, the impact can be catastrophic. It was a valuable reminder that even risks outside your direct control need to be factored into your overall risk strategy, especially when they have the potential to cause significant reputational damage.
Looking ahead: The future of GRC
Ascend London 2024 made one thing clear: The future of GRC lies in adapting and innovating. It’s about embracing risk not as a challenge, but as a strategic opportunity. Resolver is leading the charge with solutions that not only meet today’s regulatory demands but also help organizations thrive in a risk-driven world.
As we look ahead, I’m excited to see how GRC professionals continue to evolve their approaches and how Resolver will continue to play a pivotal role in that journey. Let’s keep the conversation going.
Ready to elevate your GRC strategy? Book a demo to explore Resolver’s full suite of GRC solutions in action.
About this author:
Amanda Cohen, Vice President of Governance, Risk, and Compliance at Resolver, leads the company’s GRC product strategy. With over 15 years of experience in risk management, she helps organizations transform risk into an advantage. Amanda focuses on practical, innovative solutions that empower teams to make smarter, data-driven decisions. She’s passionate about solving today’s challenges while preparing businesses to face tomorrow’s risks.