Curated for content, computing, and digital experience professionals

Author: Sebastian Holst (Page 1 of 2)

5 Passes to OCEG IT Forum in 2 weeks for Gilbane readers

I am pleased to be able to offer 5 complimentary passes to the OCEG IT Forum being held at the Harvard Club in Boston on May 9th and 10th. I have already written about this conference in previous entries here – the conference focuses on the role of technology and the IT organization in governance, risk and compliance management.

This is not a technical conference – it is a conference on how all stakeholders can best utilize, prioritize and deploy IT and technology resources. Participation cuts across executive, line of business and senior technology roles and includes diverse perspectives including presentations from the CEO of Deloitte Consulting, CCO of Sun Microsystems, CSO of Bose, Sr. Director of IT Internal Audit from Microsoft, VP of enterprise risk research from Forrester and many more.

The registration fee is over $1,200 –this offer of complimentary registration offers educational and networking opportunity to the those that care about these issues. If you think you or someone in your organization would benefit –please email me directly at

(For full disclosure – I am the co-chair of this event and that is how I am able to extend this offer).

The OCEG IT Forum is gathering steam

The OCEG IT Forum is gathering steam in its pursuit to establish a recurring annual curriculum of connected conferences and publications for IT and GRC professionals. OCEG has combined with The Integrity Institute , The Institute for Internal Auditors and the CERT/CC to produce a series to address the complex issues surrounding the application of technology to the rapidly evolving discipline of governance, risk and compliance management. The conference is being co-chaired by Michael Rasmussen, VP of risk management and compliance at Forrester Research and myself and is being supported by a growing number of sponsors led by diamond sponsor Deloitte Consulting LLC.

Continue reading

Governance, risk and compliance – 3 pillars of an effective organization

…with a subtitle of Technology, Process & Organization – The 3 pillars of adoption
Evolving governance, risk and compliance (GRC) management requirements (process) and a raft of new technologies to automate, coordinate, monitor and audit those processes are enabling, or shall I say forcing, significant shifts in organizational structure. While changes within finance, legal, HR, risk and compliance offices are certainly profound, IT organizations have a unique two-front battle on their hands. Obviously, IT has to get its own house in order – document and put into motion an effective and sustained IT governance program. This should not be confused with the second broader and more strategic challenge of application and technology expansion in support of finance, legal and the rest of their internal constituents. The critical importance of sustaining effective GRC programs and the central role of technology as an enabling catalyst makes the successful adoption of GRC technology one of the most important operational challenges of the day.
It is for all of these reasons that I am very excited about the recent work of the Open Compliance and Ethics Group and the soon to be announced OCEG IT Forum.

Continue reading

The problem with Guest Blogging

The problem with extra-curricular BLOGS

The problem with extra-curricular blogs (those that are not connected to your day job), is that it’s very difficult to set aside time to write much of any interest. Well, in order to maintain any momentum on my little blog, I am inserting a TOC for future blog entries…I wonder, does predicting future structure in a blog violate the spirit of a blog or extend it?

Anyhow, here is a preview on some of the areas of confusion surrounding compliance management that are particularly irksome to me. I will try to knock-off a few of these topics every couple of weeks. If you have any comments – don’t hesitate to kibitz!

  • Compliance DOES NOT equal compliance management
  • Sarbanes-Oxley IS NOT a content management problem
  • Complete ignorance of US Sentencing Guidelines on effective compliance management MATTERS
  • …SO DOES supporting multiple regulations
  • The bridge between compliance and performance
  • The role of IT in overall corporate compliance (versus IT governance)
  • The role of Software as a Service in overall compliance

I think that’s enough for now…. see you soon!

Hello World

A year (or two or three) ago, I contributed a regular column to and came to enjoy having an alternative outlet for my musings. The theme then was “tribal knowledge – a monthly column dedicated to dispelling hi tech myths and sharing life’s lessons.” Well, I am not sure how many new “life lessons” I may have to share – but I can say with absolute confidence that “hi-tech myths” continue to breed, multiply and prosper. Having crossed back into “the dark side” of the business as my analyst friends privately call the enterprise software industry, I am going to narrow my focus to the latest white hot hi tech category – compliance. So, this is just a “hello world” posting – giving fair warning that I have a long list of double talk, meaningfully ambiguous terminology and self referential world views that I am looking forward to skewering – and I hope someone out there will enjoy reading these postings as much as I anticipate writing them. Thanks for the forum Frank.

« Older posts

© 2020 The Gilbane Advisor

Theme by Anders NorenUp ↑