“Use caution with Forrester Waves and Gartner Magic Quadrants.” Leading GRC Analyst. In 2008 I wrote a piece for Risk Management Magazine called GRC –TheGreat Risk Con. Much to the chagrin of many readers, my article went on to make a number of inflammatory comments ranging from an inference which suggested that anyone who uses [...]

It seems that my piece in the June edition of Risk Management Magazine caused some contraversy, and even drew a letter to the editor from the President of the Risk Management Institution of Australia.  This is all healthy debate as it forces us to assess whether learned approaches are still relevant, or whether we’re just [...]

Governance Risk and Compliance – The Great Risk Con, Todd Davies, Risk Management Magazine, June 2008 GRC as a term is popping up everywhere. It seems that all companies that used to sell audit software are now “GRC companies”, recruiting firms that used to hire auditors and company secretaries now have a “GRC practice” and [...]