GRC & Legal

GRC LegalAcolyst’s GRC & Legal Practice

According to the Open Compliance and Ethics Group (OCEG), the formal definition of Governance, Risk, and Compliance (GRC) is a “system of people, processes, and technology that enables an organization to:

  • Understand and prioritize stakeholder expectations.
  • Set business objectives that are congruent with values and risks.
  • Achieve objectives while optimizing risk profile, and protecting value.
  • Operate within legal, contractual, internal, social, and ethical boundaries.
  • Provide relevant, reliable, and timely information to appropriate stakeholders.
  • Enable the measurement of the performance and effectiveness of the system.”

Acolyst’s resources including its analysts, consulting practice, documentation templates, tools, partners, experience and lessons learned; help organizations align their people, processes, and technology.  Acolyst has been providing GRC support services to the federal government for over 15 years.  Acolyst supports its clients by managing risks, complying with applicable laws and regulations while improving and maximizing performance.

Some of Acolyst’s support activities include strategy planning and roadmap design, performance management improvement and reporting, disaster recovery and business continuity planning, risk management, financial reporting, compliancy documentation, and IT security standards being met.

Part of the OCEG list of functions and processes which Acolyst has added to, includes:

  • Data and IT Governance
  • Strategy and Business Performance Management
  • Risk Management
  • Compliance and Legal
  • Internal Control, Audit, and Monitoring
  • Corporate Security, Information Assurance (IA)
  • Business Ethics
  • Quality Assurance and Management
  • Finance
  • Configuration Management
  • Business Continuity and Planning
  • Testing, Independent  Verification and Validation (IV&V)
  • Human Capital, Culture, and Training

Acolyst’s GRC & Legal Experience

Clients

GRC Related Functions and Processes

Government
US ARMY Financial Management & Configuration Management and Governance
Department of Education (DOE) Human Capital, Culture, and Training
Department of Homeland Security (DHS) IT Security and Single Sign On (SSO)
Defense Logistics Agency (DLA) Configuration and Change Management, Information Assurance, Training, Performance Management, Risk Management, Business Continuity and Planning, Strategy and Business Performance Management, Testing, and Financial Management
Defense Technical Information Center (DTIC) IT Security and Single Sign On (SSO)
Federal Aviation Administration (FAA) Data Governance, Strategy and Business Performance Management, and Financial Management
Pension Benefit Guaranty Corporation (PBGC) Strategy and Business Performance Management, Risk Management, Compliance and Legal, Internal Control, Audit, and Monitoring, Corporate Security, Quality Assurance, Testing, Finance, Configuration Management, Business Continuity and Planning, and Training
Pentagon Renovation (PENREN) Quality Control and Quality Assurance
Securities Exchange Commission (SEC) Data Governance, Strategy and Business Performance Management, Quality Assurance, Configuration Management, and Testing
Smithsonian Institution Data Governance and Strategy and Business Performance Management
Social Security Administration (SSA) Compliance and Legal, Strategy and Business Performance Management, Risk Management, and Training
US State Department (DOS) Compliance and Legal, Strategy and Business Performance Management, Risk Management, and Training
United States Postal Service (USPS) Data and IT Governance, Strategy and Business Performance Management, Risk Management, Compliance and Legal, Internal Control, Audit, and Monitoring, Corporate Security, Quality Assurance and Management, Finance, Configuration Management, Business Continuity and Planning, Testing, Independent Verification & Validation (IV&V), Human Capital, Culture, and Training
Commercial
Land O’Lakes Strategy and Business Performance Management, Risk Management, Internal Control, Audit, and Monitoring
Dominican Republic Quality Control

RESOURCES
Acolyst’s Governance, Risk, Compliance (GRC) & Legal Related Whitepapers, Blogs, and Videos:

Acolyst Data Governance White Paper

GRC, Government and the Cloud

Trilyst Data Performance Management White Paper

CA ERwin + Acolyst + MicroStrategy: Trilyst Video