#GRCchat

Responsibilities for information governance: Who should uphold GRC?

Other recaps from our #GRCchat

Craft a complete information governance structure

Info governance

    Requires Free Membership to View

training: Who, when and what to cover

When it comes to security breaches or compliance gaps, many are quick to point the finger outside their own department. In our first-ever SearchCompliance #GRCchat in January, we asked participants, "What departments or roles should be responsible for championing risk management and compliance in information governance frameworks?"

Our participants indicated that an individual or department should handle responsibilities for information governance management and fighting throughout the organization. According to #GRCchat-ters, chief risk officers, chief information security officers, chief data officers and even CEOs should step up and advocate for more stringent governance, risk and compliance (GRC):

C-suite roles were the focus of our Twitter followers, but one participant shared an alternative idea:

Our own executive editor, Linda Tucci, was first to probe Randy Moeller, a global governance manager at Procter & Gamble:

Shawn Tiemann, a solutions engineer at LockPath , also posed a series of questions to Moeller:

After responsibilities for information governance have been established, what next? We closed out our inaugural SearchCompliance #GRCchat by asking followers, "How can information governance frameworks be developed to cut down or eliminate redundant processes in relation to risk and compliance?" Step one: Discuss processes.

Once organizations understand these processes, they should look to streamline them, said SearchCompliance Managing Editor Rachel Lebeaux -- a topic that got some play earlier in the tweet jam:

Another component of strong information governance is proper protocol around document accessibility:

The fact that a discussion about document storage quickly turned into a conversation about the cloud points to an increased interest in cloud security as companies begin to streamline their governance, risk and compliance operations. Do you agree or disagree? Tell us in the comments section below.

To read the entire #GRCchat conversation, head over to Twitter. Our next @ITCompliance tweet jam will take place on Thursday, Feb. 20, at 12 p.m. EST. Stay tuned for details!

This was first published in January 2014

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

Expert Discussion

What departments or roles should be responsible for championing information governance and GRC?

Emily McLaughlin, Assistant Site Editor
What's your opinion?
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.