ONSPRING INSIGHTS

Why Do An Internal Audit? | Understanding the Essence of Why

To some, the constant barrage of “why” questions from their kids is irritating, but to me it was my very favorite thing about having those youngsters in my house. The concept of “why” is rooted in learning. When you ask this question, you are seeking to gain knowledge, perspective, understanding—you simply want to figure it out.

Internal Audit Report | The Future of Internal Audit

Onspring recently conducted a survey, reaching out to audit professionals to find out about future trends in the internal audit field. Putting together tangible questions that deliver concrete results on current practices in internal audit and risks that may impact the field in the future was our target, and that was accomplished.

Audit Software Installation: A Solid Foundation Out Of The Box

A lot of times when we start showing a client our out-of-the-box audit solution, we’ll be told, “Oh, that’s pretty close to what we already do.” We’ll have to tweak a couple of fields, but what Onspring starts with initially is usually all that a lot of clients will need. We take a lot of pride in the fact that we’ve added and shaped our audit solution to meet most of the needs presented to us by customers.

Audit Software: Getting Ready to Audit the Fish

Much like my fishing trip, you should begin defining your requirements and planning early on, maybe even wade around in research materials for a few months before beginning the purchasing process itself. It is of paramount importance to ask yourself the tough questions that will help shape and define your scope—questions around your budget, specific needs, timeline and workflow requirements tend to work best.

Getting Back in Touch

From a work perspective, I am just as excited at the prospects of getting back in touch with people and things that matter. In the last couple of weeks I’ve been focusing on the following things that I think will help me get back in touch with why I love working at Onspring.

The GRC Buying Experience: How to Buy GRC Software

One of the prerequisites to acquiring a GRC platform should be like a lot of other major items that are bought; when you are looking to make a major purchase or acquisition, consult many people in a lot of different areas. Ask your friends or colleagues, read reviews, do extra research, and as strange as this seems, even see what the trolls of the internet have to offer.

NIST-Based Risk Assessment Takeaways

For those who aren’t aware, NIST is the National Institute of Standards and Technology, a non-regulatory agency of the U.S. Commerce Department. NIST develops and issues standards, guidelines and other documents to encourage and assist federal agencies and the private sector in implementing these standards.

A Scrum and a Try | Winning with a GRC Platform

The Onspring Sales team knows you probably don’t want us to sit on the couch with you and watch Onspring videos after just having spoken for the first time, but we do our best to make you feel at ease with the resources available to help with education and awareness of where you’re at with your processes and where you can be in the future.

GRC Software | Top 5 Things to Consider when Selecting GRC Software

Onspring’s leadership, product, solution engineering, professional services and sales teams have hundreds (yes, hundreds!) of years of combined experience in business process automation with a focus on GRC. Nearly all of us here have had experience working for other GRC software providers or have helped to deliver consulting and implementation services across nearly every GRC product listed in a review, quadrant, report or software list.

History of GRC | Governance, Risk Management & Compliance History

When GRC platforms started becoming a “thing” in the mid-2000s, there were only a few major players in the market. They focused primarily on IT: whether it be controls, policies or risk management. Additionally, with the Enron and Worldcom scandals, SOX and its myriad of financial reporting controls quickly became platform offerings as well. As the market started expanding quickly at the turn of the decade, the concept of “eGRC”, with the “e” standing for enterprise, swept the landscape. Why settle for managing IT processes when many of the tools were capable of managing an entire organizations’ Governance, Risk and Compliance frameworks? The natural progression had begun.

What is GRC Software and What Does It Do? | GRC FAQs

If in your current state, your audit team has to spend time creating work papers manually and then saving them and going back and looking at them, that’s a manual step that is something that could be easily repeated in Onspring that ends up saving a lot of time. Looking at how much time were we spending on admin work in the past and now how much time are we pivoting that toward audit work—time, saving time is a big ROI with Onspring.

Governance, Risk Management and Compliance | GRC: 3-Legged Stool

I have always had a fondness for risk management; in my career, there have been many times where I have argued against something because it was too risky, at least in my eyes. Governance and compliance always seemed to be burdens to me, and to be completely honest, I was fairly prejudice against them. With compliance, I could see the benefit from a societal level, but at a certain point I viewed it as checking off proverbial boxes.