Don’t miss our panel on 2023 GRC Trends with experts in all things GRC and ERM. This event was originally hosted by RIMS.

As the governance, risk, and compliance space increases in complexity, you’re hearing acronyms and new takes for subjects like Cognitive GRC, ESG, technology like Artificial Intelligence (AI) and machine learning (ML), and third-party risk and trying to determine what this means for risk management and compliance in your organization and how you budget and plan for what’s coming.

What are GRC leaders talking about today that will shape the world of risk intelligence tomorrow? Here are some highlights from our experts:

2023 GRC Trends: GRC and technology

“Now we’re building on GRC 4.0. We have what I call GRC 5.0, cognitive GRC, and leveraging artificial intelligence technologies on top of GRC 4.0, and then moving towards GRC 6.0 — that business integrated GRC.”
~ Michael Rasmussen, GRC pundit and founder, GRC 20/20 Research

“At the most basic level, [AI and Machine Learning] allows you to take large amounts of data, and then consolidate it, apply patterns and trends and identify things within that data. So you’re taking someone who might previously have been undertaking an activity, and you’re freeing them up to allow them to do more analysis and really focus on how the operations of their business are performing.”
~ Amanda Cohen, VP of GRC Products, Resolver

2023 GRC Trends: ESG and ESG-washing

“Companies need to show that they’re going beyond putting out statements or engaging in low-impact activities — sort of box-ticking exercises. They need to better understand and make good on the environmental and social impacts of their investments, of their activities, and also the activities of their third parties.”
~ Kroll’s Managing Director of Compliance Risk & Due Diligence, Mariellen Davies-DeMarco.

2023 GRC Trends: Digital transformation (& getting leadership buy-in)

“What’s the cost of current systems that you have managing all these different functions? For us, it ended up being quite a considerable amount. So the benefit was pretty clear. Not just having it all in one system and all in one place where we can leverage off of each other’s work, but then also just the cost itself ended up being quite a bit less just to have it in that one system. It ended up being a pretty easy sell to our management team, just based off of that alone.”
~ Eleni Willis, SVP & Director, ERM Operations at Sterling Bank & Trust

2023 GRC Trends: Delivering business value with GRC

You need to make sure you have the right platform that can deliver on that future state you’re building towards. When I work on business cases in this space, I build those business cases around efficiency, effectiveness, and agility.”
~ Michael Rasmussen, GRC pundit and founder, GRC 20/20 Research

GRC Trends 2023: GRC agility and risk intelligence

“If you go ahead and implement one of these programs, you’ll likely see these numbers are actually going to go up before they go down. Because for the first time, you’ve got a real understanding of what’s happening every day within your
business. It’s less ‘pie in the sky’ and more of a real understanding of how the business is operating. And so you are going to see that upward trajectory, and you’ll be able to take action on that, and then really start to do something and see those numbers (or your risk exposure) reduce overall.
~ Amanda Cohen, VP of GRC Products, Resolver

“There’s a lot of focus today on resilience, and resilience is absolutely necessary… But if I’m running down the street and I trip over a pothole, resilience is “How quickly can I get back up and start running again?” Resilience is about the recovery from a risk event. That’s important, but what I argue is what’s more important is the ability to be agile with risk. If I’m running down the street, to be able to see that pothole and leap over it or go around it. That’s what organizations need. They not only need risk resilience, which is coming in so many different regulations and things now, but they need risk agility.”
~ Michael Rasmussen, GRC pundit and founder, GRC 20/20 Research

Eleni Willis

Senior Vice President and Director of Enterprise Risk Management, Eleni Willis leads the design and implementation of Sterling Bank and Trust’s Enterprise Risk Management program. An early adopter of technology to support her GRC strategy, Eleni and her team apply common ERM methods and approaches to manage risk across all first and second lines of business. Prior to joining Sterling, Eleni oversaw risk management at a variety of financial institutions, including roles in BSA, Fraud, Accounting, and Tax. During the Great Recession, she was Senior Bank Examiner for the Washington State Department of Financial Institutions, often as the Examiner in Charge, leading risk management examinations of troubled and/or complex financial institutions.

Mariellen Davies-DeMarco

Managing director in the Compliance Risk and Diligence practice of Kroll, Mariellen focuses on optimizing business operations and leading Kroll’s due diligence research and analysis process. Mariellen has had many career highlights, including recruiting, training, and mentoring nearly 200 interns in Kroll’s immensely successful internship program. A former investigator in the Madoff/BLMIS fraud investigations, Mariellen’s current focus is on multi-language research, global due diligence, business intelligence, and compliance research.

Michael Rasmussen

Michael is an internationally recognized pundit on governance, risk management, and compliance (GRC). With 28+ years of experience, Michael helps organizations improve GRC processes, design and implement GRC architecture, and select effective, efficient, and agile technologies.

Amanda Cohen

As VP of governance, risk, and compliance products at Resolver, the leader in risk and security management software, Amanda is reimagining the way some of the world’s largest organizations think about their relationship to risk. After graduating with her master’s in international political economy, she began her career as a regulatory compliance specialist with Resolver. Today, Amanda is responsible for the vision and strategic direction of Resolver’s GRC portfolio.

Nadine Araksi

With many years in the media industry, from journalist to business executive, Nadine made the switch to Resolver in 2021. She approaches content around risk with a journalist’s mindset of “What’s interesting about this? What does the audience want to know?” She loves telling the story of Resolver’s robust and holistic Risk Intelligence platform as well as interviewing customers and thought leaders in the risk management industry.

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
AWSALBCORS	7 days	This cookie is managed by Amazon Web Services and is used for load balancing.
BIGipServersj13web-nginx-app_https	session	This cookie name is associated with the BIG-IP product suite from company F5. Usually associated with managing sessions on load balanced servers, to ensure user requests are routed consistently to the correct server. The common root is BIGipServer most commonly followed by a domain name, usually the one that it is hosted on, but not always.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
CookieLawInfoConsent	1 year	Records the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
datadome	session	This is a security cookie set by Force24 to detect BOTS and malicious traffic.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
XSRF-TOKEN	6 months	This cookie is set by Wix and is used for security purposes.
_mkto_trk	2 years	This cookie, provided by Marketo, has information (such as a unique user ID) that is used to track the user's site usage. The cookies set by Marketo are readable only by Marketo.
__cfruid	session	Cloudflare sets this cookie to identify trusted web traffic.
__resolver-ref	session	This cookie is set by Resolver to ensure visitors receive unique content after submitting a form on our website.

Functional

Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.

Cookie	Duration	Description
bcookie	2 years	LinkedIn sets this cookie from LinkedIn share buttons and ad tags to recognize browser ID.
lang	session	This cookie is used to store the language preferences of a user to serve up content in that stored language the next time user visit the website.
lidc	1 day	LinkedIn sets the lidc cookie to facilitate data center selection.
sp_landing	1 day	The sp_landing is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.
sp_t	1 year	The sp_t cookie is set by Spotify to implement audio content from Spotify on the website and also registers information on user interaction related to the audio content.
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.

Performance

Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

Cookie	Duration	Description
ADRUM_BT1	past	This cookie is set by AppDynamics and is used to optimize the visitor experience on the website by detecting errors on the website and share the information to support staff.
ADRUM_BTa	past	This cookie is set by AppDynamics and used to optimize the visitor experience on the website by detecting errors on the website and share the information to support staff.
AWSALB	7 days	AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.

Analytics

Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Cookie	Duration	Description
ajs_anonymous_id	never	This cookie is set by Segment.io to check the number of ew and returning visitors to the website.
ajs_user_id	never	The cookie is set by Segment.io and is used to analyze how you use the website
CONSENT	16 years 2 months 17 days 10 hours	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
ln_or	1 day	Linkedin sets this cookie to registers statistical data on users' behaviour on the website for internal analytics.
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_gtag_UA_4655365_4	1 minute	Set by Google to distinguish users.
_gat_UA-4655365-4	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
_ga_VCHH3SM1QW	2 years	This cookie is installed by Google Analytics.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
_hjAbsoluteSessionInProgress	30 minutes	Hotjar sets this cookie to detect the first pageview session of a user. This is a True/False flag set by the cookie.
_hjFirstSeen	30 minutes	Hotjar sets this cookie to identify a new user’s first session. It stores a true/false value, indicating whether it was the first time Hotjar saw this user.
_hjid	1 year	This is a Hotjar cookie that is set when the customer first lands on a page using the Hotjar script.
_hjIncludedInPageviewSample	2 minutes	Hotjar sets this cookie to know whether a user is included in the data sampling defined by the site's pageview limit.
_hjIncludedInSessionSample	2 minutes	Hotjar sets this cookie to know whether a user is included in the data sampling defined by the site's daily session limit.
_omappvp	11 years	The _omappvp cookie is set by OptinMonster to distinguish new and returning users and is used in conjunction with _omappvs cookie.
_omappvs	20 minutes	The _omappvs cookie set by OptinMonster, used in conjunction with the _omappvp cookies, is used to determine if the visitor has visited the website before, or if it is a new visitor.
_uetsid	1 day	This cookies are used to collect analytical information about how visitors use the website. This information is used to compile report and improve site.

Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.

Cookie	Duration	Description
anj	3 months	AppNexus sets the anj cookie that contains data stating whether a cookie ID is synced with partners.
bscookie	2 years	This cookie is a browser ID cookie set by Linked share Buttons and ad tags.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
MUID	1 year 24 days	Bing sets this cookie to recognize unique web browsers visiting Microsoft sites. This cookie is used for advertising, site analytics, and other operations.
personalization_id	2 years	Twitter sets this cookie to integrate and share features for social media and also store information about how the user uses the website, for tracking and targeting.
sa-user-id	1 year	StackAdapt sets this cookie as a Random Identifier for user identification, to display relevant advertisements.
sa-user-id-v2	1 year	StackAdapt sets this cookie as a Random Identifier for user identification, to display relevant advertisements.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
uuid2	3 months	The uuid2 cookie is set by AppNexus and records information that helps in differentiating between devices and browsers. This information is used to pick out ads delivered by the platform and assess the ad performance and its attribute payment.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
_uetvid	1 year 24 days	This cookie is set by Bing to store and track visits across websites.

Others

Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.

Cookie	Duration	Description
33ff0b0c0c	session	No description
ajs_group_id	never	This cookie is set by Segment.io. The purpose of the cookie is currently not identified.
AnalyticsSyncHistory	1 month	This cookie set by LinkedIn is used to store information about the time a sync with the lms_analytics cookie took place for users in the Designated Countries
AWSALBAPP-0	7 days	No description
AWSALBAPP-1	7 days	No description
AWSALBAPP-2	7 days	No description
AWSALBAPP-3	7 days	No description
debug	never	No description available.
DEVICE_INFO	5 months 27 days	No description
guestidc	session	This cookie is set by Jobvite.
li_gc	2 years	Set by LinkedIn and used to store consent of guests regarding the use of cookies for non-essential purposes
loglevel	never	No description available.
muc_ads	2 years	No description
rl_anonymous_id	never	No description available.
rl_user_id	never	No description available.
UserMatchHistory	1 month	Linkedin - Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.
visitorId	1 year	No description
_cfuvid	session	No description
_hjSessionUser_103316	1 year	No description
_hjSession_103316	30 minutes	No description
_smm_answers	session	No description
_smm_answers_text	session	No description

From Chaos to Clarity: 2023 GRC Trends

2023 GRC Trends: GRC and technology

2023 GRC Trends: ESG and ESG-washing

2023 GRC Trends: Digital transformation (& getting leadership buy-in)

2023 GRC Trends: Delivering business value with GRC

GRC Trends 2023: GRC agility and risk intelligence

Presented by:

From Chaos to Clarity: 2023 GRC Trends

2023 GRC Trends: GRC and technology

2023 GRC Trends: ESG and ESG-washing

2023 GRC Trends: Digital transformation (& getting leadership buy-in)

2023 GRC Trends: Delivering business value with GRC

GRC Trends 2023: GRC agility and risk intelligence

Presented by:

Related Resources

2023 GRC Trends: Digital transformation (& getting leadership buy-in)