Author: Corey
-
5 overlooked retail GRC risks senior leaders should be watching
Read more: 5 overlooked retail GRC risks senior leaders should be watchingKey takeaways Retail leaders are focused on growth, margin, resilience, customer trust and operational performance. For GRC teams to add real value, they need to connect risk and controls to those outcomes, not manage them in isolation. Recent retail examples show why this matters. Lindsay Haselhurst, Chief Operating Officer at Currys, said retail crime statistics “make for difficult reading”, but the…
-
Spotlight on Women in GRC: Risk Director on AI, trust & career paths
Read more: Spotlight on Women in GRC: Risk Director on AI, trust & career pathsIn anticipation for the Women in GRC Awards on 2nd July 2026, we’re running a podcast series “Spotlight on Women in GRC”. In this first episode, Head of Marketing, Lucy Montague of CoreStream GRC sits down with Lauren de Thibault, a Risk Director at a leading global telecommunications company and previous Women in GRC Award winner, and shares how a career spanning law, compliance, governance and risk shaped her leadership style. The…
-
US & UAE GRC headlines: Regulators are widening the assurance perimeter.
Read more: US & UAE GRC headlines: Regulators are widening the assurance perimeter.Recent regulatory activity in the US and UAE points to a bigger GRC trend: regulators are looking beyond policies and asking whether organizations can prove control across more areas of the business. In the US, the Department of Justice announced a $549.5m False Claims Act settlement over alleged evasion of customs duties on Chinese aluminum extrusions. The…
-
What is the Secure Controls Framework and why does it matter for compliance?
Read more: What is the Secure Controls Framework and why does it matter for compliance?Key takeaways Compliance teams are not short of frameworks. They are short of time, clarity and defensible evidence. The Secure Controls Framework, or SCF, is designed to reduce duplication by consolidating 200+ laws, regulations and frameworks into a single control architecture. SCF covers 1,400+ controls across 33 domains, giving organizations a clearer way to understand…
-
Corporate governance
Read more: Corporate governanceWhat is corporate governance? The Cadbury Report gave one of the most widely used definitions of corporate governance: “Corporate governance is the system by which companies are directed and controlled.“ The Cadbury Report However, beyond day-to-day operations corporate governance is also the system by which a company is held accountable. It covers how the board…
-
Leading the GRC conversation: CoreStream GRC events and panels to watch
Read more: Leading the GRC conversation: CoreStream GRC events and panels to watch2026 will bring several opportunities for CoreStream GRC to share insight, join industry conversations, and connect with the wider GRC community. Here at CoreStream GRC, we exist to empower organizations to do the right thing, every day. That purpose shapes more than the platform we build. It also influences how we show up in the market. From customer community events and expert…
-
Shein data transfer inquiry: cross-border data risk is back in focus with Ireland’s Data Protection Commission
Read more: Shein data transfer inquiry: cross-border data risk is back in focus with Ireland’s Data Protection CommissionKey takeaways Ireland’s Data Protection Commission has opened an inquiry into SHEIN Ireland over transfers of EU/EEA personal data to China. The DPC has said transfers to China are now an “important strategic priority,” and the inquiry will examine GDPR principles, transparency obligations, and Chapter V transfer requirements. This messaging makes this far more than…
-
Why GRC platforms need to keep pace with business change
Read more: Why GRC platforms need to keep pace with business changeA GRC platform should not only reflect how your business worked on day 1. It should reflect how your business works now and into the future. Contracts change. Ownership models shift. Reporting lines move. New teams come into scope. New obligations appear. Historic records still matter, but they should not make live work harder to…
-
EHS, ESG and GRC: why sustainability compliance now belongs at the heart of risk
Read more: EHS, ESG and GRC: why sustainability compliance now belongs at the heart of riskHow Enhesa and CoreStream GRC GRC help you turn EHS and sustainability pressure into a joined up, defensible GRC program If you want to see how leading organizations are folding EHS and ESG into their core GRC framework, this is the place to start. 1. Integrating Environment, Health & Safety (EHS), Environmental, Social, and Governance…
-
Effective AI-enabled GRC: how to implement trusted, verified AI into risk and compliance
Read more: Effective AI-enabled GRC: how to implement trusted, verified AI into risk and complianceAbstract AI has moved quickly from boardroom curiosity to operational pressure. GRC teams are being asked to reduce manual work, strengthen assurance, and do more with the same headcount. The problem is that generic AI can sound right while producing outputs that are hard to evidence, hard to explain, and impossible to defend in front…