Carole Switzer – Compliance Building

Winding Down From Compliance Week

Posted on May 27, 2010April 16, 2014 by Doug Cornelius

My head is full of compliance goodness after spending 2.5 days at Compliance Week 2010. The Mayflower Hotel is a great place for a conference this size, with plenty of places to run into people. Substance The agenda was full of great substantive information from fellow compliance professionals. There were sessions on metrics, social media,…

The 2010 OCEG GRC Achievement Awards Presentation

Posted on May 25, 2010June 27, 2014 by Doug Cornelius

The Open Compliance and Ethics Group will recognize the great strides that many organizations have made in improving and integrating their approaches to governance, risk management, and compliance. The winners were: Best Buy – Ethics blog for employees Capital One – GRC implementation Carnival Corporation – Integrated approach to GRC Management Direct TV- Embedding spreadsheet…

Self-Assessments: Criteria and Procedures for Evaluating GRC Programs

Posted on June 3, 2009June 27, 2014 by Doug Cornelius

My notes, live, from Self-Assessments: Criteria and Procedures for Evaluating GRC Programs, with Gracie Fisher Renbarger, Chief Ethics and Compliance Officer of Dell; Nan Stout, Vice President Business Ethics of Staples; and Carole Stern Switzer, President of OCEG. Carole started off with two observations: Designing, implementing, and improving a governance, risk management and compliance (GRC)…

Business Risk Intelligence

Posted on January 15, 2009May 25, 2010 by Doug Cornelius

These are my notes from the OCEG webinar: Business Risk Intelligence. Carole Stern Switzer, President of OCEG Paul Shultz, Managing Director of Protiviti Dave Anderson, Senior Director of SAP Business Objects Paul frames the problem: Risk is often just an afterthought of strategy, resulting in strategic objectives that may be unrealistic and risk management being…

Compliance Boundaries

Posted on December 10, 2008 by Doug Cornelius

One way to view compliance policies is grouping them into mandatory and voluntary policies. Mandatory are those dictated by law. Voluntary are those the organization has imposed to futher business objectives and manage risk. Thanks to Carole Switzer, President of OCEG for this perspective.

IT for GRC: Improving Information Quality

Posted on December 4, 2008June 27, 2014 by Doug Cornelius

Carole Switzer, President of OCEG and Lee Dittmar, principal of Deloitte Consulting LLP presented this webinar. There is an imperative to improve governance, risk management and compliance processes to better manage risk, address increasing regulatory requirements, increased executive accountability and the fragmentation of information. It is about getting the right information, to the right person,…

A Unified Approach to GRC

Posted on October 29, 2008June 27, 2014 by Doug Cornelius

A participated in a webinar by Carole Stern Switzer of OCEG and Sumner Blount of CA, Inc. on Unified Governance, Risk and Compliance. Governance – the culture, policies, processes, laws and institutions the define the structure by which companies are directed and managed. Risk – the effect of uncertainty on business objectives. Compliance – The…