GRC is the integrated collection of capabilities that enable an organization to reliably achieve objectives, address uncertainty and act with integrity.
GRC as an acronym denotes GOVERNANCE, RISK, and COMPLIANCE .
The acronym GRC was invented as a shorthand reference to the critical capabilities that must work together to achieve Principled Performance — the capabilities thatintegrate the governance, management and assurance of performance, risk, and compliance activities.
This includes the work done by departments like internal audit, compliance, risk,
legal, finance, IT, HR as well as the lines of business, executive suite and the board itself.