Skip to Main content Skip to Navigation
Conference papers

Governance, Risk and Compliance: A Strategic Alignment Perspective Applied to Two Case Studies

Abstract : Governance, Risk and Compliance (GRC) has become critical for organizations and so is the need to support this by ICT. This paper positions GRC into an integrated strategic perspective, providing guidelines to assess maturity and defining paths for achieving strategic alignment. The approach is applied to two case studies, clarifying the organizations’ GRC maturity “as is” and “to be”. These cases were studied in the utilities and financial sectors, both show that organizations can have similar GRC maturity levels but follow quite different paths to achieve alignment with regard to GRC. While the Dutch utility company stuck to a path where the organizational strategy with respect to GRC was taken as a starting point, the financial institution followed a path in which the IT solution strategy was leading. In interpreting this result, it appears that the existing IT assets are strongly impacting the selection of the alignment path. More case studies are advocated to further validate the approach and contribute to optimize the strategic and integrated perspective on GRC.
Document type :
Conference papers
Complete list of metadata

Cited literature [14 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Friday, May 19, 2017 - 2:42:56 PM
Last modification on : Friday, August 5, 2022 - 3:00:32 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Abbas Shahim, Ronald Batenburg, Geert Vermunt. Governance, Risk and Compliance: A Strategic Alignment Perspective Applied to Two Case Studies. 10th International Conference on Human Choice and Computers (HCC), Sep 2012, Amsterdam, Netherlands. pp.202-212, ⟨10.1007/978-3-642-33332-3_19⟩. ⟨hal-01525120⟩



Record views


Files downloads