The key elements of an effective GRC architecture integrates good corporate governance, risk management, compliance, ethics and internal control.
Avanon GRC addresses the needs of GRC in a manner best described by OECG's Red Book and the GRC Capability Model™. Avanon shares the belief that this is the most suitable umbrella framework to bring a holistic enterprise view of GRC together that works from the board of directors down into the management and process of an organization.
The goals of a GRC program are not to replace the well-established risk and compliance frameworks and standards but to give them a common language and context to operate within and thus provide enterprise collaboration and communication across governance, risk and compliance.
"The market for enterprise GRC platforms is shifting from a focus on regulatory compliance to a focus on enterprise risk management. Vendors also are adding support for audit and legal professionals, particularly audit management, policy management, and content."
Gartner Research, 2009