CUNA News
  • LOG IN
  • Create Account
  • Sign Out
  • My Account
  • LOG IN
  • Create Account
  • Sign Out
  • My Account
  • Topics
    • Community Service
    • Compliance
    • Credit Union Hero
    • Credit Union Rock Star
    • Credit Union System
    • Directors
    • Human Resources
    • Leadership
    • Lending
    • Marketing
    • Operations
    • Policy & Issues
    • Sales & Service
    • Technology
  • Credit Union Magazine
    • Buyers' Guide
    • COVID-19
    • Digital Edition
    • Credit Union Hero
    • Credit Union Rock Star
    • Subscribe
    • Advertise
    • Contact
  • Advertise
  • Awards
    • Nominate Credit Union Hero
    • Nominate Credit Union Rock Star
  • Podcasts
  • Videos
  • Contact

News

Home » Up your GRC game: 10 steps
Compliance

Up your GRC game: 10 steps

Pandemic provides impetus to improve risk management.

September 29, 2021
Ron Jooss
No Comments
Beasley_Mark_119947
Mark Beasley, professor of accounting and director of the Enterprise Risk Management Initiative at North Carolina State University, says enterprise-wide governance, risk and compliance should be seen through the lens of "what drives the long-term success of the credit union."

If there was ever an environment that provided sufficient motivation to elevate your governance, risk, and compliance (GRC) function, COVID-19 has provided it.

The pandemic is “an example of how a single event can trigger an explosion of risk affecting all aspects of our operations,” says Mark Beasley, professor of accounting and director of the Enterprise Risk Management Initiative at North Carolina State University.

“COVID demonstrates how we have to think of GRC from an enterprise view,” says Beasley, who addressed the 2021 CUNA Governance, Risk Management, and Compliance Leadership Virtual Conference. “It provides motivation to consider if we’ve set up GRC in line with strategic decision-making.”

He offers 10 ways credit unions can improve their GRC efforts:

1. Assess your current GRC ecosystem

Beasley reports 83% of executives surveyed by the North Carolina State University Enterprise Risk Management Initiative said their organizations experienced a significant operational surprise in the past five years, yet only 28% of those executives report their risk management process as mature and robust. 

“Risk management will not get easier,” Beasley says. “You need organizational buy-in to make that a reality.”

2. Retain silver linings from 2020

“Many organizations have benefited from improved communication, the elimination of silos, and outside-the-box thinking during the pandemic,” he says.

These efforts will pay dividends moving forward.

3. Evaluate your GRC ecosystem through a strategy lens

GRC should start with what drives value.

“Start with what is important for the long-term success of the organization,” Beasley says. “That provides the lens through which you view risk.”

4. Look up and out more

While GRC often has an operational focus, external risks such as geopolitical changes, cyberthreats, natural disasters, and social media issues also pose risks.

‘Don’t make assumptions or favor data that will only confirm your biases.’
Mark Beasley

5. Elevate your business continuity plan

Cyberattacks are the greatest threat to business continuity, Beasley says. 

“Our organizations are so dependent on technology today,” he says. “Who owns management of that risk in your organization? Is it silo-focused or managed at the enterprise level?”

6. Watch for innovative newcomers

New innovators present a threat to traditional competitors within any industry. 

“They’re faster and nimbler than our legacy systems,” Beasley says. “Companies that don’t have the talent and labor to deal with it will be left behind.”

7. Broaden your GRC scope

Risk management should be an expected competency for all leaders within the organization, he says. “You need multiple layers to manage this complex world we’re in.”

8. Identify blind spots

Biases cause most blind spots, Beasley says. “Don’t make assumptions or favor data that will only confirm your biases.”

9. Take advantage of opportunities

Take risks that will advance your organization strategically. 

“Be creative in identifying new opportunities,” Beasley says. “Explore where you are too risk-averse and why.”

10. Support the board’s role in governance

Provide the board with sufficient information to engage in meaningful risk management discussions.

KEYWORDS compliance risk

Post a comment to this article

Report Abusive Comment

Credit Union Magazine: Spring 2022

Spring 2022

Credit Union Magazine’s Spring 2022 edition profiles four Credit Union Heroes and examines CUNA's advocacy priorities, the advocacy army, and financial well-being for all.
Digital Edition •  Subscribe

Trending

  • FOM modernization bill passes House Financial Services Committee

  • House committee to mark up field of membership modernization bill

  • Final flood Q&As reflect CUNA-sought clarifications

Tweets by CUNA_News

Polls

Are you ready for CECL?

View Results
More

Champion for the Credit Union Movement

Credit Union National Association is the most influential financial services trade association and the only national association that advocates on behalf of all of America's credit unions. We work tirelessly to protect your best interests in Washington and all 50 states. We fuel your professional growth at every level and champion the credit union story at every turn.

More CUNA

  • Membership
  • Contact Us
  • Careers

Resources for

  • Credit Union Advocates
  • Leagues
  • Press
  • Providers

Our Affiliates

  • American Association of Credit Union Leagues (AACUL)
  • Credit Union Awareness
  • Credit Union House
  • CUNA Strategic Services
  • National Credit Union Foundation
GET CUNA UPDATES
© 2022 Credit Union National Association | ADA Compliance Notice & Legal
Email Us