Αρχική » Διδακτορικές Διατριβές » Υποψήφιοι Διδάκτορες » Θεμιστοκλέους Γρηγόριος

Θεμιστοκλέους Γρηγόριος

Προσωπικές Πληροφορίες

Θέμα ΔΔ:

Establishing an Integrated Governance, Risk and Compliance (GRC) Framework: A Methodological Approach for Evaluating GRC Company Investments

Επιβλέπων Καθηγητής:

ΑΛΕΞΑΚΗΣ Π.     

Μέλος επιτροπής-1:

ΚΑΙΝΟΥΡΓΙΟΣ Δ.               

Μέλος επιτροπής-2:

ΜΠΑΛΙΟΣ Δ.

Ηλεκτρονικό Ταχυδρομείο:

gthemistocleous[at]hotmail[dot]com

Προσωπική Ιστοσελίδα:

https://www.linkedin.com/in/gthemistocleous/

Περίληψη Διδακτορικής Διατριβής

Ελληνικά

-

Αγγλικά

Over the past years, the growing regulatory environment coupled with a higher level of business complexity and an increased focus on accountability led companies to pursue a broad range of Governance, Risk and Compliance (GRC) initiatives across the organization. However, in an era where risks are interdependent and controls are shared, these initiatives were uncoordinated and managed in “silos”. As a result, these investments did not adequately address business risks. Furthermore, these parallel compliance driven risk initiatives led to duplicated efforts, lack of corporate transparency and increased total cost of compliance.

To compact the aforementioned shortcomings, just around 2004 (the first year in which the Sarbanes-Oxley Act became mandatory) businesses turned to a more integrated GRC approach as a means to improve both the efficiency and effectiveness of their risk and control functions. Given the increased company demand for integrated GRC initiatives, the business community rapidly embraced this opportunity by providing related methodologies and professional services along with relevant technological infrastructures to support and automate these activities. In the meantime, scientific and academic research on integrated GRC was lacking despite its significance to organizations. The first academic definition for integrated GRC was proposed in 2010, followed by a number of other researches that have further explored this area.

The purpose of this research study is to provide a methodological approach for evaluating integrated GRC company investments in terms of the business value delivered to them. The research will include a theoretical and empirical investigation about integrated GRC initiatives within enterprises and its aspects. This will then lead to a further analysis of selected GRC initiatives in detail regarding measured results and the extent to which strategic benefits have been achieved.

From a practical perspective, we envisage that the research outputs will provide insights related to GRC investments, help companies to gain a better view of their enterprise value and point out to critical focus areas for successfully harnessing the desired objectives and benefits according to their unique business strategies.

From a theoretical perspective, the proposed research will contribute to the knowledge of existing integrated GRC research, to include a view on investment benefits, as an attempt to gain a better insight of this new area, which only recently has concerned the academia.

Σύντομο Βιογραφικό

An executive business management advisor developing high caliber teams in risk, operations, compliance, audit, business applications security control processes, cyber security and information technology. My goal is to deliver high quality solutions customized to leading companies in their unique sectors, culture, sales efforts, business operations and supporting information technology.  Throughout my professional career, I work from the practical/technical realm up to every business process decision. I tackle C-level risks and make sure all involved stakeholders act upon key pressing issues that affect strategic business initiatives and compliance concerns.  I lead teams in a number of multinational projects in the technology, consumer goods, food, telecommunications, banking, insurance, oil & gas, mining & metals, automotive and life sciences sectors. Through these results oriented business operations improvement engagements, I have acquired sound management experience in the areas of strategy, sales development, enterprise risk, Governance, Risk & Compliance (GRC), Enterprise Resource Planning (ERP) implementation (including SAP, Oracle Financials, Navision and JD Edwards), vendor selection, security, quality assurance, internal audit, data analytics and business controls effectiveness. Over the years, one of my focus areas were a number of SAP quality assurance implementation management projects covering major SAP supported business processes (FI, CO, SD, MM, PP, HR, CRM, BW, GRC and related IS modules).  Since 2013 I am a visiting/adjunct lecturer at the University of Athens; serving post-graduate level courses and delivering customized training in the area of audit, compliance and digitization. Currently, I’m working with the university towards a PhD on Governance, Risk and Compliance (GRC); combining my academic background in economics, information systems and practical experience in audit, control and security.

Ερευνητικές εργασίες - Δημοσιεύσεις

 -