Purpose : Get Board commitment to approve a long-term program in Governance (GRC) ! Continuous !!
Today, many companies of different business segment in distinct countries and with invest capacity restriction, have the same big question, how to adopt new digital business opportunities, size of this market share, how much it will necessary to invest to achieve this new business goals and so many others critical question .
The important point is about your company, how many steps your company already made to obtain more business opportunities in this new digital world.
But, the crucial issue is about the company actual culture to do and perform profit in this new environment and understanding what kind of business risk will treat, business reputation damage, be adherent for local law requirements, prevent fraud, external audit demanded, management and monitor control about the investment to show for the shareholders or owners.
Everything expose above are steps and requirements of the best practices to management your business and assure results, so these steps will call of long path of Governance Culture and have a special mission of the set more assurance your business goals results.
In this context, competitive market, there isn´t much time the to wait the ideal scenario to start that can lose business opportunities, the Board of Directors must set on a alert because business transformation depends on the culture change, spend a long term, strong Board of Directors engagement to produce results.
Remeber, "ESRM is a security program management approach that links security activities to an enterprise's mission and business goals through risk management methods. The security leader's role in ESRM is to manage risks of harm to enterprise assets in partnership with the business leaders whose assets are exposed to those risks. ESRM involves educating business leaders on the
realistic impacts of identified risks, presenting potential strategies to mitigate those impacts, then enacting the option chosen by the business in line with accepted levels of business risk tolerance." By John Petruzzi, CPP 2018 Secretaryelect ASIS International Board of Directors
I suggest that the company must involve too expertises in Digital Business, Innovation, CyberSecurity, Digital Legal ... because there aren´t space to loose time and effort to forget critical itens to do and because this take more risk, lose control, impact business target and tthe company reputation!
There are many obvious questions and traditional answers, that we need to think about a potencial risk in the local business culture, like:
"... The company have enough expertises and managers to take about these new business digital demand and others ...'
"... The company have good partners and in the right moment we will decide and buy the solution ... "
"... Why my company must to invest again in Governance !..."
"... The organization already have Governance implemented and there isn´t plan for new steps..."
"... The company have doing their business with all challenger with good results and there isn´t budget neither resources to invest in Governance! ..."
" The company published in their intranet all kind of governance documents and procedures, that can be accessed for all employers ..."
"... There isn´t backlog until now, please talk with IT manager ..."
"... Nobody send for Board any kind of problems found in the Audit report (Internal / External)..."
"... The company is a Multinational, for this reason all demands are discussed in the head office in ...."
"... The organization is so small to adopt Governance processes and demands. ..."
" ... In this moment there are many top managers involved and discussing these GRC terms, and if any for critical they send for the Board. ..."
" ...The company have a SMB culture, and already done all steps for the governance demanded for functional top managers, but we have plan to do again in the future. ..."
"... The Company have plan to implement internal controls, internal audit, compliance, risk management and metrics in a couple years ! ..."