GRC & Legal
Acolyst’s GRC & Legal Practice
According to the Open Compliance and Ethics Group (OCEG), the formal definition of Governance, Risk, and Compliance (GRC) is a “system of people, processes, and technology that enables an organization to:
- Understand and prioritize stakeholder expectations.
- Set business objectives that are congruent with values and risks.
- Achieve objectives while optimizing risk profile, and protecting value.
- Operate within legal, contractual, internal, social, and ethical boundaries.
- Provide relevant, reliable, and timely information to appropriate stakeholders.
- Enable the measurement of the performance and effectiveness of the system.”
Acolyst’s resources including its analysts, consulting practice, documentation templates, tools, partners, experience and lessons learned; help organizations align their people, processes, and technology. Acolyst has been providing GRC support services to the federal government for over 15 years. Acolyst supports its clients by managing risks, complying with applicable laws and regulations while improving and maximizing performance.
Some of Acolyst’s support activities include strategy planning and roadmap design, performance management improvement and reporting, disaster recovery and business continuity planning, risk management, financial reporting, compliancy documentation, and IT security standards being met.
Part of the OCEG list of functions and processes which Acolyst has added to, includes:
- Data and IT Governance
- Strategy and Business Performance Management
- Risk Management
- Compliance and Legal
- Internal Control, Audit, and Monitoring
- Corporate Security, Information Assurance (IA)
- Business Ethics
- Quality Assurance and Management
- Finance
- Configuration Management
- Business Continuity and Planning
- Testing, Independent Verification and Validation (IV&V)
- Human Capital, Culture, and Training
Acolyst’s GRC & Legal Experience
|
Clients |
GRC Related Functions and Processes |
| Government | |
| US ARMY | Financial Management & Configuration Management and Governance |
| Department of Education (DOE) | Human Capital, Culture, and Training |
| Department of Homeland Security (DHS) | IT Security and Single Sign On (SSO) |
| Defense Logistics Agency (DLA) | Configuration and Change Management, Information Assurance, Training, Performance Management, Risk Management, Business Continuity and Planning, Strategy and Business Performance Management, Testing, and Financial Management |
| Defense Technical Information Center (DTIC) | IT Security and Single Sign On (SSO) |
| Federal Aviation Administration (FAA) | Data Governance, Strategy and Business Performance Management, and Financial Management |
| Pension Benefit Guaranty Corporation (PBGC) | Strategy and Business Performance Management, Risk Management, Compliance and Legal, Internal Control, Audit, and Monitoring, Corporate Security, Quality Assurance, Testing, Finance, Configuration Management, Business Continuity and Planning, and Training |
| Pentagon Renovation (PENREN) | Quality Control and Quality Assurance |
| Securities Exchange Commission (SEC) | Data Governance, Strategy and Business Performance Management, Quality Assurance, Configuration Management, and Testing |
| Smithsonian Institution | Data Governance and Strategy and Business Performance Management |
| Social Security Administration (SSA) | Compliance and Legal, Strategy and Business Performance Management, Risk Management, and Training |
| US State Department (DOS) | Compliance and Legal, Strategy and Business Performance Management, Risk Management, and Training |
| United States Postal Service (USPS) | Data and IT Governance, Strategy and Business Performance Management, Risk Management, Compliance and Legal, Internal Control, Audit, and Monitoring, Corporate Security, Quality Assurance and Management, Finance, Configuration Management, Business Continuity and Planning, Testing, Independent Verification & Validation (IV&V), Human Capital, Culture, and Training |
| Commercial | |
| Land O’Lakes | Strategy and Business Performance Management, Risk Management, Internal Control, Audit, and Monitoring |
| Dominican Republic | Quality Control |
RESOURCES
Acolyst’s Governance, Risk, Compliance (GRC) & Legal Related Whitepapers, Blogs, and Videos:
Acolyst Data Governance White Paper