Governance, Risk and Compliance (GRC) represents a business oriented approach to establishing a GRC program. It is not a new concept, but GRC programs have many moving parts. This guide provides a framework for an organization to plan out its GRC strategy. It also provides a visual presentation of the GRC framework and objectives behind an effective program. The guide provides an overview of how things fit together to maximize value in GRC projects, and how to implement GRC strategies.”]
Source: https://www.healthcareinfosecurity.com/whitepapers/grc-reference-architecture-w-848