Bruce McCuaig

Bruce McCuaig

About Bruce McCuaig

Bruce McCuaig is director of Product Marketing at SAP GRC solutions. He is responsible for development and execution of the product marketing strategy for SAP Risk Management, SAP Audit Management, and SAP solutions for three lines of defense. Bruce has extensive experience in industry as a finance professional, as a chief risk officer, and as a chief audit executive. He has written and spoken extensively on GRC topics and has worked with clients around the world implementing GRC solutions and technology.

audit, financial reporting, digital trust, risk management, GRC

The Role Of Internal Audit In Digital Trust

21-Mar-2019 | Bruce McCuaig

What is digital trust? In the words of PwC, “If the lifeblood of the digital economy is data, its heart is digital trust – the level of confidence in people, processes, and technology to build a

Intelligent GRC For The Intelligent Enterprise

16-Oct-2018 | Bruce McCuaig

We’ve all heard about digital transformation and the intelligent enterprise. But what exactly is the intelligent enterprise and what, if any, impact will it have on governance, risk, and compliance

Advice For The CFO: Get Out Of Control

7-Aug-2018 | Bruce McCuaig

After years as a practitioner in governance, risk, and compliance (GRC), I have come to believe that the biggest obstacle to safe and reliable performance of business processes is the internal-control

Confidential Meeting Minutes: Alexa Meets With Board Audit Committee

12-Jul-2018 | Bruce McCuaig

It’s the stated goal of SAP to eliminate 50% of manual activities in the next three years and to provide users with a hands-free UX. As a GRC professional, I think it’s a fantastic idea, but ac

Lessons On GRC Platforms From The Forrester Wave: Keep Your Eyes On The Road

22-Mar-2018 | Bruce McCuaig

On February 15, Forrester released The Forrester Wave: Governance, Risk, and Compliance Platforms, Q1 2018. SAP continues to be rated a leader. But the market for governance, risk, and compliance (GRC


i-GRC And The Three Lines Of Defense

28-Nov-2017 | Bruce McCuaig

[no_syndicate_info][/no_syndicate_info] In my last blog, I appropriated the “i” from IDC’s The Rise of Intelligent ERP and, in a different blog, made the case that GRC professionals and stand

The Rise Of Intelligent GRC

7-Nov-2017 | Bruce McCuaig

Nibbling versus consuming: In my blog last week, I made the case that GRC practitioners merely nibbled on technology and did not truly “consume” it. Failure to consume technology prevents progress

Are You Just Nibbling At GRC Technology?

31-Oct-2017 | Bruce McCuaig

Last week, SAP CEO Bill McDermott told us at SAP that it wasn’t enough to sell our software to customers; we need to show them how to “consume” it. I couldn’t agree more. Governance, risk, and

Shifting Controls To The Right Of Launch

14-Aug-2017 | Bruce McCuaig

I recently blogged about “shifting GRC to the left of launch,” focusing on the need to predict and manage extreme risks before they occur. But a strong case can be made for managing infrequent or

GRC, governance, risk, risk management

Where Have All The Good Risks Gone?

5-Jul-2017 | Bruce McCuaig

Another week, another “Top 10” risk list. All the “Top 10” risks are disasters waiting to happen. They attract nods and sighs from the risk managers and risk pundits of the world. What would h