In order to bring you the best possible user experience, this site uses Javascript. If you are seeing this message, it is likely that the Javascript option in your browser is disabled. For optimal viewing of this site, please ensure that Javascript is enabled for your browser. Governance, risk and compliance (GRC) - Grant Thornton LLP

Governance, risk and compliance (GRC)

Recent regulatory enactments have altered the corporate governance landscape. Organizations are held accountable for accuracy and integrity in their business operations, and they must have effective and reliable governance and compliance procedures in place.


Grant Thornton helps companies:

  • understand and comply with regulatory requirements
  • implement the right corporate governance framework in regard to these regulations
  • establish appropriate compliance practices

Our services include:

  • Internal audit  – Assess your control environment and safeguard business assets and processes, including those that protect data and IT systems.
  • Sarbanes-Oxley (SOX) consulting  – Comply with the financial disclosure and internal control requirements of the Sarbanes-Oxley Act of 2002 and related Securities and Exchange Commission (SEC) rules.
  • ExpeditionGRC – Product suite provides management with a real-time portal view into your company’s compliance and internal audit programs.
  • Cybersecurity – Assess your organization's requirements around security, privacy and protection.
  • Service organization attestation reports – Produce a report for your customers and their auditors that instills confidence and enhances their trust in your services.
  • Regulatory compliance – Review and assess your regulatory compliance processes, assess the regulatory concerns and recommend the necessary improvements required to successfully satisfy regulatory mandates.

Internal audit’s balancing act: Reporting relationships, focus and resources 

Internal audit is on a continual quest to strike a balance in all aspects of its operations, from reporting relationships to how it divides its audit focus and how it staffs its team. The 2012 Grant Thornton LLP Chief Audit Executive Survey sheds some light on how they are responding to challenges in these areas while ensuring independence, objectivity and performance excellence.

Managing the complexity of regulatory compliance with a “one-to-many” approach 

Compliance continues to be an important consideration in an organization’s overall risk profile. But organizations can plan for compliance mandates so that they’re able to satisfy requirements in a more efficient and economical way and gain greater peace of mind. They can streamline their efforts with a “one-to-many” approach — that is, adopt a mindset and process by which an organization can test once and comply multiple times with various mandates. Having a proactive method helps prepare for whatever regulatory change lies ahead.

Keeping third-party risk in check 

The reliance on third parties has become a business reality in today’s highly competitive environment. As more companies outsource significant and critical business functions, they’re relinquishing more of their control environment to others. They need to have a consistent and comprehensive process for evaluating and mitigating the risks inherent in these relationships, preferably as part of the ongoing internal audit risk universe and risk management initiatives.

Sample

Chief Audit Executive (CAE) Survey

Now released - our annual survey of chief audit executives, a study that highlights the current state of the profession and identifies emerging trends that may affect the function’s performance.

Sample

Corporate Governance Publications

Browse articles, white papers, newsletters, comment letters and other materials relevant to corporate governance.

Public Company Accounting Oversight Board  

Securities & Exchange Commission  

© 2013 Grant Thornton LLP All rights reserved U.S. member firm of Grant Thornton International Ltd