An executive briefing on information technology (IT) governance, risk, and compliance (GRC) is a key mechanism for the governance risk and compliance officer, data protection officer (information officer), AI governance officer, or IT governance officer to get the board on board. It is a defining measure of success for any project or programme.
A vital function of any board is to assess opportunity and risk and act on it.
Your executive, board, or governing body (like an audit risk committee, social and ethics committee or EXCO) needs to understand on the impact a law will have on your organisation, especially when implementing any new technologies (including AI). They will impact your organisation’s data protection, information security, and other GRC structures. These challenges often require multi-disciplinary teams to solve them, and with the governing body well-informed, it is possible to get buy-in, from the beginning.
The briefing provides an accurate, high-level, balanced view of the law and its impact on the organisation.
- Some executives have read articles in the press or heard rumours, which makes them concerned. Often, the concern is unfounded. Executives need to be adequately briefed.
- Some executives do not believe that relevant law impacts the organisation. They must understand why it is necessary, the issues, the time frame, and what needs to be done.
You can’t govern what you don’t know.
The briefing will help executives leverage their compliance efforts into positive public relations and business benefits.
What executives need to know
- An overview of the laws that your organisation must comply with.
- How your organisation currently complies.
- How significant is the impact?
- Your current maturity?
- What is the timeline?
- What could happen if you do not comply?
- What is the business case?
- A checklist for effective compliance leadership by the executives.
- And more …
They must be briefed in plain language and only the big picture – the high-level view. It is often hard to give someone a high-level view – the essentials they need to know. The presentation should be around 25 minutes (plus questions). The handout is no longer than three pages to ensure it’s digestable. The board is often insight-rich and time-poor.
How we help compliance officers with executive briefings
We can help you:
- develop a motivation to brief the board
- identify the focus areas for the briefing
- prepare your briefing (or presentation) for the executives and the handout you give them.
- present it to the executives if you prefer
- act as the bridge between tech and governance, risk and compliance with our deep understanding of technology
Possible Focus areas to focus on:
- Data protection laws (for example, GDPR, POPI Act)
- Information or cyber security
- AI governance – how to leverage AI lawfully
- Cybercrime
- Access to information laws (like PAIA)
- Governance codes like the King Code
- Plain legal language
- Commercialising data (law)fully
How does your board benefit from an executive briefing?
An executive briefing will:
- empower the board with knowledge by briefing them on the relevant topic.
- leverage opportunity by looking at new technology and the associated governance requirements in the context of your organisation.
- manage risk by ensuring that everyone on the board has shared insight on the key issues.
- support a responsible board by empowering them to assess opportunities and risks and act on them.
- know the next practical steps you should take
Who does it apply to?
It is for all organisations, but especially for those on whom the impact of an issue is significant.
Training material for members of the governing body
We have a variety of training materials in our programmes that help members of governing bodies to be aware of what they need to know. For example, we have lenses focussing on Briefing the governing body on data protection and Briefing the governing body on AI governance.
Why Michalsons
There is significant complexity at the intersection between law and technology. The Michalsons team has a deep understanding of both the law and the underlying tech. We have sages, proficient in governance, tech and information security, data protection and AI regulation and more. They are experienced advisors who have managed the impact new technologies have on organisations across industries from banking, to manufacturing and everything in between. We are adept at sharing the golden nuggets of insight with you. We combine this with pro-innovation attorneys at the coal-face, ready to push the boundaries.. The team will connect with you and your board at the appropriate level. Giving you just the right information to answer your questions and enable you to make decisions.
Our diverse team of professionals has:
- Briefed many boards over the years
- Years of experience in information security
- Deep expertise in data protection and data governance
- The ability to unpack governance issues considering principles and rules
- Rigour in thought and application
- Research expertise
- Passion for the intersection between law and technology
- Experience in using AI and unpacking AI governance
- Experience across industries
Let’s talk now. Enquire by completing the form on the right-hand side or