Michael Sanchez, director at
Sirius Solutions, spoke with SearchCompliance.com reporter Linda Tucci recently to share his thoughts and experiences implementing a NERC-based GRC program for one of the largest power producers in the United States.
In the story published on February 17, Tucci recaps "some of the components that helped the power company get out of the starting gate with its GRC program," which comes down to 5 key steps:
1) Understand what is required by the regulation.
2) Assess what you have done before.
3) Develop the compliance processes with the business units before buying technology.
4) Don't fall for a dressed-up point solution.
5) Consider a hosted solution, at least for the start of the program.
You can read the
full article here to learn more about Sirius' successes and for more detail on these 5 key steps.