Governance, Risk and Compliance (GRC) Information Systems provide key functionalities - ranging from risk program management to regulatory monitoring and reporting - to different stakeholders within an enterprise. GRC is moving toward “a more integrated approach to ensure effective governance, manage risks and optimize performance while addressing compliance obligations throughout the enterprise” (OCEG GRC technology solution guide v2.1). New generation GRC Information Systems are expected to simplify and automate the consumption of Regulations, to create compliant business processes whose execution can be monitored using controls traceable back to the Regulations and to enable flexible Risk reporting over integrated data. State of the art Governance dashboards and user interfaces are key in increasing the adoption of this new generation of GRC information systems. Recent advances in Artificial Intelligence, in Databases and in Business Processes Modelling will take GRC to this next level. In particular, Semantic Technologies provide the required accuracy for formal Knowledge Representation and the flexibility for large data and process integration.
Hosted by the 25th International Conference on Database and Expert Systems Applications (DEXA 2014), the 1st International Workshop on Advanced Technologies for Governance Risk and Compliance is a forum bringing together researchers and practitioners working in GRC, semantic technologies and related areas. It is an opportunity to discuss current challenges and to assess state of the art technologies.