• Service: Advisory, Risk Consulting, Internal Audit and Regulatory Compliance
  • Industry: Banking & Finance, Media, Healthcare & Pharmaceuticals, Insurance, Investment Management, Building, Construction & Real Estate, Financial Services, Food, Drink & Consumer Goods, Telecommunications
  • Date: 6/14/2012

A Good Offense is the Best Defense: Managing Regulatory Compliance with GRC 

An ever-evolving regulatory environment coupled with increasing oversight pressure is challenging organizations to manage and comply with a continuous wave of new regulations. Congress enacts thousands of pages of legislation annually, and many of these, such as the Dodd-Frank Wall Street Reform and Consumer Protection Act (Dodd-Frank Act), have compelled organizations to focus on the regulatory compliance aspects of these acts using already strained human and financial resources.
According to a recent Economic Intelligence Unit/KPMG survey, many companies find it difficult to keep pace with the rate of new regulations and compliance. As a result, a frequent response to a new regulatory requirement is to add an extra process or function, an ad hoc approach that may address the immediate issue but can lead to overlapping responsibilities, inconsistent processes, and duplicated efforts. And costs. Indeed, almost a third of the global executive respondents say that they spend more than 6 percent of their organization’s annual revenues on governance, risk, and compliance (GRC) activities. There is also near-universal agreement that the cost of these activities is rising. Over the past two years, 89 percent say that the cost has increased, and 84 percent expect it to grow further over the next two years.