GRC blogs
Explore our blogs for expert insights, industry updates, and practical guidance
Designed to challenge ways of thinking and help your enterprise excel in GRC.
-
Paul Cadwallader joins Michael Rasmussen’s new podcast to discuss the state and future of GRC
Read more: Paul Cadwallader joins Michael Rasmussen’s new podcast to discuss the state and future of GRCWe recently had the privilege of welcoming Michael Rasmussen, GRC 2020 analyst, author, and founder of The GRC Report, to our London offices to record a very special premier episode for his new podcast series: “Hitchhiker’s guide to the GRC galaxy.“ Paul Cadwallader, GRC Strategy Director at CoreStream GRC, sat down with Michael for a…
-
How to apply value-based GRC: 3 strategic steps for GRC leaders
Read more: How to apply value-based GRC: 3 strategic steps for GRC leadersAt CoreStream GRC, we recognize that every GRC leader has a unique approach, which is why we tailor our content to suit different preferences.Welcome to Part 2 of our Value-Based GRC series. Following the foundational insights from Strategy Director Paul Cadwallader in Part 1, this post dives into three strategic steps to help you apply Value-Based GRC in practice.…
-
What is value-based GRC? A strategic business case for Governance, Risk and Compliance
Read more: What is value-based GRC? A strategic business case for Governance, Risk and ComplianceAt CoreStream GRC, we understand that aligning with user preferences is key to delivering meaningful impact. Welcome to Part 1 of our Value-Based GRC blog series. In this opening post, our Strategy Director, Paul Cadwallader, shares a foundational perspective for GRC professionals looking to unlock greater value from their Governance, Risk, and Compliance programs. Read the full…
-
A conversation with our GRC Strategy Director: how to achieve value-based GRC
Read more: A conversation with our GRC Strategy Director: how to achieve value-based GRC“With value-based GRC, your organization can achieve more and gain a greater competitive advantage.”— Paul Cadwallader, GRC Strategy Director, CoreStream GRC Our GRC Strategy Director, and former Deloitte partner, Paul Cadwallader, who leads bespoke workshops for enterprises seeking to enhance and optimize their Governance, Risk, and Compliance (GRC) programs, sat down with our Head of…
-
Watch: the story behind CoreStream GRC in less than 2 mins
Read more: Watch: the story behind CoreStream GRC in less than 2 minsThis is CoreStream GRC: the platform that truly works for you. Michael Rasmussen, the Godfather of GRC, who coined the term GRC back at Forrester, described us as “the GRC player that’s flying under the radar but delivering on some of the most complex third party risk, internal control, and risk management projects for major…
-
Why switch from spreadsheets to a GRC platform
Read more: Why switch from spreadsheets to a GRC platformThe Excel and Google Sheets safety net Spreadsheets are universally used, an easily accessible way to organize and analyze data. They often become the default starting point for many projects and processes simply because they’re already part of a business’s standard office tool suite. Even when a dedicated tool is purchased, many professionals end up…
-
Resilience, regulation & AI: key takeaways from Third Party Risk Management Europe 2025
Read more: Resilience, regulation & AI: key takeaways from Third Party Risk Management Europe 2025Third-party risk management (TPRM) has moved beyond compliance into a critical pillar of operational resilience, regulatory readiness, and business continuity. That was the resounding message from the Vendor & Third Party Risk Summit Europe, where leaders across financial services, insurance, and banking shared hard-won lessons from implementing DORA, navigating the AI frontier, and preparing for…
-
Top tips for choosing your next GRC tool
Read more: Top tips for choosing your next GRC toolBased on the Pool Re’s experience in selecting a new GRC platform, here are three key factors to focus on when evaluating potential solutions. 1. Prioritize user experience A great GRC system should be intuitive and easy to use, especially for business users who aren’t working in it every day. “If you need to engage…
-
A conversation with Women in GRC: a partnership built on advocacy, allyship, and action
Read more: A conversation with Women in GRC: a partnership built on advocacy, allyship, and actionWith less than a month to go until the 2025 Women in GRC Awards, anticipation is high here at CoreStream GRC. As proud sponsors and shortlisted for 5 awards, we’re thrilled to be part of this empowering celebration of the women leading the way in governance, risk, and compliance (GRC). Recently, our Head of Marketing,…
-
Lessons from ESRM UK 2025: Why Risk is About Outcomes, Not Obstacles
Read more: Lessons from ESRM UK 2025: Why Risk is About Outcomes, Not ObstaclesEnterprise Security Risk Management UK Event Risk and Compliance leaders from across the UK gathered in London for ESRM UK 2025, a flagship event exploring the evolving world of Enterprise Security Risk Management. Hosted on March 5th, the conference brought together experts from major organizations including Co-op, Jaguar Land Rover, and General Bank of Canada,…
Ready to speak to our experts?
Discover our case studies
The success stories of flexible intuitive GRC technology
-
GUIDE: AI paper
Our Artificial Intelligence (AI) strategy By Co-Founder and CPO, Rich Eddolls 1.0 Introduction CoreStream GRC rarely publishes targeted strategy documents. But then there are rarely moments like the current adoption of Artificial Intelligence (AI) that have the potential to revolutionize the way we work, and even how we live our lives. This guide intends to…
-
CASE STUDY: Nottingham University Hospitals (NUH) NHS
Transforming compliance and transparency at Nottingham University Hospitals with CoreStream GRC About Nottingham University Hospitals NHS Trust As one of the largest NHS Trusts in the UK, NUH receives thousands of data access and freedom of information (FOI) requests every year. For a public body, incorrect handling of data requests could mean more than inefficiency;…
-
GUIDE: GRC culture
A cultural guide to GRC This guide was written by Rich Eddolls, Chief Product Officer and Co-Founder at CoreStream GRC Here is a preview of the guide: Introduction: shaping a GRC culture that lasts “Is GRC a culture, a practice or a program?” Governance, Risk, and Compliance (GRC) can be many things depending on your…
Ready to upgrade your GRC tech?
Contact the team and request your demo today.
This form may not be visible due to adblockers, or JavaScript not being enabled.