Governance, risk and compliance (GRC) is the combination of people, processes, and technology to:
- Establish, execute and communicate risk and compliance objectives across the organisation
- Identify, mitigate, and report on a complete and consistent library of risks, controls and key performance indicators
- Align the monitoring of compliance with both regulations and internal policies
GRC solutions are technology-enabled products and services to integrate, facilitate, streamline and maximise the efficiency and value of an organisation’s GRC strategy, providing a single source of truth.
This publication summarises KPMG’s GRC solutions and services, and highlights the key features that a holistic GRC solution should have.