Profile picture
, 10 tweets, 4 min read
My Authors
Read all threads
I recently conducted a business case analysis presentation around implementing a GRC tool in our org over the current use of Excel and a few other tools to get things done. While I can't share the entire slides, I decided to share some to help those of you also trying. 1/10
Here is the overall agenda. I can show you the example use case scenarios, but I can't share the current workflows/future workflows. So make sure you show them the current way you perform actions and explain what is coming and the problem that GRC software will solve. 2/10
Ensure to define what GRC software is and isn't. Emphasis put on the auditing actions. An Excel sheet is great, but if someone goes in and changes a control that says "partially-compliant" to "compliant", will you actually catch that? Probably not as easily as GRC software. 3/10
Going to let these slides mostly stand on their own when it comes to use cases. We know them well, but this is still maybe helping your creativity flow so you don't forget something that can be put down in your efforts. 4/10
Workflow mgmt is huge and this is something most exec's will gravitate the most to. This is where manhours are massively spent. It is not feasible at all to track compliant audits in a spreadsheet. (EX: Conducting a GPO audit annually). Spend a lot of time here. Quantify. 5/10
Third-Party Risk Management. Most GRC software has some way to just handle, at minimum, the sending/receiving/tracking/scoring of questionnaires to them. Imagine doing that manually. No way. Quantify. My company has potentially 85k+ vendors. That can't be done manually. 6/10
This is the one that can most easily be kept in Excel and a GRC software will have minimal value add, but it still matters. And the mapping is the biggest value add, as previously shown. 7/10
Remember we talked about auditing earlier. Multi-user means spreadsheets aren't going to cut it. If someone improperly changes a field to compliant and you don't catch it, you'll probably ignore it. Audit time comes and you get nailed. You'll be on the hook to explain. 8/10
This one is self-explanatory. Reporting is almost always better from some software application over building your own pivot charts. From a time standpoint alone. That's more quantifiable manhours. 9/10
This is another thing that could be easily tracked outside of GRC software, but is still a value add and has its benefits of being in it. 10/10.
Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Frank McGovern

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @FrankMcG see all

Profile picture
Frank McGovern
@FrankMcG
At a discussion today on cyber litigation and what you can do to reduce your cyber legal risks.
Almost every breach today comes with a lawsuit or lawsuits. And it’s only growing.

Everything you do, you are producing evidence for when you get breached that will be used against you by prosecutors.
We are needing a federal statute on breach notification. Every state has their own rules and when a breach happens, you have to know the laws of every state regarding notification and ensure you’re following them.
Read 17 tweets

Related threads

Profile picture
Dr. Jamshaid
@JammanKhattak
I'd like to be discuss former Caretaker Law Minister to the Federal govt and renowned lawyer Mr. Ahmer Bilal Sufi (or ABS), whose dubious AND SINISTER connections to the military establishment & state are something that people continue to ignore & as such fly underneath the radar
Everyone will already be aware that he has been notified as a member on the all important committee tasked to work out a strategy on Kashmir. ABS is often portrayed as this unerring & faultless legal expert who is always ready to take up the causes that really matter such as Reko
Diq or Kashmir (among others); both being the reason why I've wanted to discuss him today. For starters he once made a royal mess by giving negligent advice to NAB on a broadsheet case where the organisation was essentially involved in a payment dispute with an external
Read 16 tweets
Profile picture
Oscar Baruffa 📊🇳🇱
@oscar_b123
[Thread] 1/n Tomorrow I'll be starting a new role as a Data Specialist at non profit. Core duties will be setting up a data base, analysing spreadsheet models, finding trends and insights, benchmarking projects and ....
setting up and maintaining an online portal to share the above with partner organisations and donors.

I'll be assisted by a Data Analyst and that will be our little team of two in the data team.
This is what @AngeBassa calls "The First One" i.e. the 1st person setting up some form of Data Science infrastructure in an org. I'll also be sneaking some #rstats in there because much of what I'll need to do to create really great value will not be do-able with #Excel only.
Read 18 tweets
Profile picture
jade ⏳⚔️⚖️
@j_ardinera
If you’re not angry, you’re not paying attention.

If you’re still paying to watch Hollywood films or to drink Seagrams products, you’re enabling child sex trafficking. You’re consciously choosing to give your money to fund operations run by slave owners.
NXIVM was operating 11 daycares in Albany, NYC, LA, London, Madrid, Guatemala City, Mexico City, 3 other Mexican cities, & Miami.

Penelope Cruz paid 120k to enroll her daughter in NXIVM school. Raquel Perera, wife of Grammy winner Alejandro Sanj, was director of Miami location.
All of the people that are put on a pedestal, regarded as examples of glamour as success, that we are told to support and emulate and aspire to be like are HUMAN TRAFFICKERS.

THEY ARE SMUGGLING CHILDREN ACROSS THE BORDER AND ENSLAVING THEM FOR SEX WORK.
Read 39 tweets
Profile picture
kkonline.org
@krishnakhanna
#YESBANK #Reversal #NimblrTA #Indicator #Amibroker #TDC
#TATASTEEL #Reversal #NimblrTA #Amibroker #Indicator
#Reversal #Axisbank #Amibroker #NimblrTA DTR just 0.41 at the point of sell signal (red arrow)
Read 39 tweets
Profile picture
Moritz Gerstung
@MoritzGerstung
Here is what we learned recently about somatic evolution and cancer:
1. Mutations arise in virtually every tissue of our body, as a part of normal development and ageing doi.org/10.1101/416339. As a rule of thumb about 1 mutation is introduced at every cell division.
2. Somatic mutations shed light on the first cell divisions in life, informing us about early embryogenesis and how the cells in different parts of our bodies are related to each other via their shared mutations. dx.doi.org/10.1038/nature… dx.doi.org/10.1038/nature…
3. In some cases this allows one to draw detailed conclusions about the homeostatic dynamics of an adult organ, exemplified beautifully in recent work on normal blood by Henry Lee-Six, @scienceadvocacy and colleagues. doi.org/10.1038/s41586…
Read 8 tweets
Profile picture
Obama_Truth
@ObamaTruth1
1 of 35. #TRUTH #TwitterStorm PLEASE read, #Share, and #Retweet this Very Important thread. Use it on 1/17/18. I will highlight key developments, based on my analysis of #QAnon and ACTUAL events. Many pointers to this, but original source to dig is here: qcodefag.github.io
2. To interpret things:
- I will reference #QAnon material in these posts with {}.
- I will generally place my interpretations OUTSIDE of {} but will use parentheses within to help. Reference web link in post 1 to SEE original Q content.
3. #QAnon is REAL, VERY REAL. There's a massive effort by #DeepState to discredit or label #QAnon as a #LARP.
Q (1/14/18):
{Boards changed due to statements re: private comms - FALSE.
Boards changed due to failure to IDEN accurately.
Boards changed due to MISINFO…
Read 36 tweets

Trending hashtags

#ElonMusk #JEXIT #GraphQL #Northeast #Intraday #TeamBrainworms #liars #Douma #SirianArmy #Bias #TheBeatles #Zuma #WeThePeople #Daesh #Threadnought #Hasaka #OSINT #UPL #respect #Illegal #Lavrov #illegally #VeryStableGenius #success #sales
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!