Governance, Risk & Compliance

Fortune favors the prepared.

Overview

Organizations and businesses of all sizes and in every sector – public, private and non-profit – operate in an increasingly complex environment, where regulatory requirements have forever changed the corporate governance landscape. The need for value-driven enterprise risk management services and corporate governance consulting has never been greater.

For peace of mind, boards, CEOs, CFOs and other top executives across a wide range of industries turn to the professionals in Friedman’s Governance, Risk and Compliance (GRC) Services practice. The GRC team offers a “safe pair of hands,” giving you the confidence you need to meet your strategic, operational, reporting and compliance objectives.

Friedman’s value-driven process allows you to:

View and assess risks and exposures through the lens of enterprise “value.”
Minimize personal and corporate risk exposure.
Extract more value from the business.
Better manage opportunities and exposures.
Achieve internal control effectiveness in preparation for an IPO or in response to a regulatory compliance requirement.
Attain a risk-based and sustainable governance process that can be executed by management on an ongoing basis.

Why choose Friedman for your enterprise risk management and governance needs?

A dedicated, experienced GRC team committed to helping you meet “must achieve” objectives.
A proven methodology that identifies and exploits cost-saving and revenue-generating opportunities.
An approach that is rooted in the 2013 COSO Framework and the elements of an effective ethics and compliance program.
Leveraged “force multipliers” via the experienced consultants and professionals from Friedman’s audit and forensic, litigation and valuation services teams.

We know you have a business to run and are sensitive to the demands of your day-to-day operations. We work seamlessly throughout all levels of your organization to deliver an enterprise risk management and corporate governance roadmap that is practical, actionable and sustainable. That is peace of mind.

To talk to our team leadership, contact partner Kevin Hyams, CPA, FCA, CFE; Director Pete Manzetti; or your Friedman relationship partner.

Service Menu

The enterprise risk management services and corporate governance consulting professionals in Friedman’s GRC Services practice deliver peace of mind to boards, audit committees, and top executives. Friedman provides services in these key areas:

Legal and Regulatory Compliance – e.g., Sarbanes-Oxley Act (SOX), Investment Advisers Act—RIA, Foreign Corrupt Practices Act (FCPA), etc.
Enterprise Risk Management Services (ERM) and Value at Risk Assessment
Anti-Bribery and Corruption Assessments (ISO 37001)
SOX 404(a) and 404(b) ICFR “Readiness” and/or Assessment
Internal Controls Assessment
Internal Audit (Co-Sourcing/Outsourcing/Transformation)
IT Audit and Security
Cyber security awareness training. For more information on how you can benefit from our cyber security consulting services, click here
SOC 1 and SOC 2 Reporting “Readiness” and Assessment
Accounting Policies and Procedures
Productivity and Process Improvement/Performance Management and Reporting – e.g., Tax Workflow, Performance Dashboards, etc.
Systems Implementation, Documentation and Project Management
Board and audit committee advisory services

Client Success

Insights & Events

February 8, 2022 A Practical Cybersecurity Assessment Approach: NYDFS Part 500 Regulation
Join Friedman LLP and CyZen on February 8th for a webinar where we will discuss and demonstrate how organizations develop...
Read more
November 23, 2021 [Access Recording] A Practical Cybersecurity Assessment Approach Webinar
Access our latest webinar where our teams discuss and demonstrate how organizations identify their risks and determine their cybersecurity preparedness using...
Read more
November 17, 2021 A Practical Cybersecurity Assessment Approach
Join Friedman LLP and CyZen on November 17th for a webinar where we will discuss and demonstrate how organizations identify their...
Read more
September 30, 2021 [Access Recording] CMMC Readiness Assessment Webinar
Access our recent webinar on-demand to learn about advantages for your organization to proactively meet both DoD and CMMC requirements....
Read more

November 23, 2021 [Access Recording] A Practical Cybersecurity Assessment Approach Webinar
Access our latest webinar where our teams discuss and demonstrate how organizations identify their risks and determine their cybersecurity preparedness using...
Read more
September 30, 2021 [Access Recording] CMMC Readiness Assessment Webinar
Access our recent webinar on-demand to learn about advantages for your organization to proactively meet both DoD and CMMC requirements....
Read more
September 9, 2021 Back to Basics: Frequently Asked Questions on Nonprofit Tax Compliance
Back to Basics, Friedman’s series focusing on nonprofit organizations’, frequently asked questions, has previously covered nonprofit accounting and financial reporting. In...
Read more
November 4, 2020 Congratulations to Ledger Vault
Ledger Vault recently obtained their SOC2 Type 1 Attestation. To learn more, head here: https://vault-ledger.medium.com/ledger-completes-soc-2-type-1-attestation-d38f81e23997...
Read more
January 20, 2020 Congratulations to Lukka for Achieving an Exciting Milestone
Lukka, a blockchain-native technology company, received both Service Organization Control SOC 1 Type 2 and SOC 2 Type 2 attestation reports. Lukka’s...
Read more
January 20, 2020 Congratulations to Grayscale Bitcoin Trust
Grayscale Investments recently became an SEC reporting company. To learn more about their milestone accomplishment, head here....
Read more
October 22, 2019 Kevin Hyams on Disclosure Practices
Partner-in-Charge of Friedman's Governance, Risk and Compliance Services Practice, Kevin Hyams recently sat with the Wall Street Journal to discuss...
Read more
January 30, 2019 Libra Becomes the First Crypto-Native Technology Company to Receive SOC 1 Type 2 Attestation Report
On January 24, Libra announced that it had become the first crypto-native software company to receive a Service Organization Control (SOC)...
Read more
December 10, 2018 Kevin Hyams on Corporate Culture in Japan
Kevin Hyams, Partner in Charge of Friedman's Governance, Risk and Compliance practice, was recently quoted in an article by Law360...
Read more
May 2, 2018 Stay Compliant and Avoid Costly Consequences with Kevin Hyams' Expert Insights in The WSJ
Due diligence is half the battle when it comes to keeping a company compliant. That’s one lesson Panasonic Avionics Corp....
Read more
February 6, 2018 Kevin Hyams Featured in Wall Street Journal, “The Morning Risk Report: Firms Go Beyond Tech to Fight Data Theft.”
As data theft becomes more prominent, safeguarding confidential information is increasingly important. “A policy for how sensitive information should be...
Read more
October 26, 2017 Friedman Featured in Fund Technology for US GDPR Implementation
Friedman LLP’s Partner, Kevin Hyams, explores the General Data Protection Regulation (GDPR) implementation for U.S. companies in an exclusive Fund...
Read more
October 26, 2015 Do Unto Others: Conduct Risk Management Defined
Recent action by the New York State Department of Financial Services is the latest in a mounting regulatory crackdown on...
Read more
October 16, 2015 Five Compliance Oversight Lessons From the VW Scandal
Volkswagen’s emissions scandal illustrates the ill effects of weak compliance oversight, boardroom groupthink and the win-at-all-costs attitude that permeated the...
Read more
October 7, 2015 Directors and Officers in the Firing Line
On September 9, 2015, the DOJ released a game-changing memorandum (“Yates Memo”) to prosecutors nationwide, with a stated goal of...
Read more
September 24, 2013 Friedman LLP Sponsors IMN Real Estate CFO Forum
Friedman LLP, Accountants and Advisors, is proud to participate as a Bronze level sponsor of the upcoming Information Management Network...
Read more
September 19, 2013 Partner Kevin Hyams to Speak on Dodd-Frank at IMN's Real Estate CFO Forum
Kevin Hyams, Partner-in-Charge of Friedman LLP's Governance, Risk and Compliance Services Practice, will be speaking at the Informational Management Network's ("IMN") 2nd Annual Real Estate CFO Forum.
Read more

February 8, 2022 A Practical Cybersecurity Assessment Approach: NYDFS Part 500 Regulation
Join Friedman LLP and CyZen on February 8th for a webinar where we will discuss and demonstrate how organizations develop...
Read more
November 17, 2021 A Practical Cybersecurity Assessment Approach
Join Friedman LLP and CyZen on November 17th for a webinar where we will discuss and demonstrate how organizations identify their...
Read more
September 29, 2021 CMMC Readiness Assessment Webinar
Under the Department of Defense's (DoD) recent Cybersecurity Maturity Model Certification (CMMC) program, DoD contractors and subcontractors must be certified at...
Read more
June 16, 2020 Profitable Growth Workshop
The decisions you make today will determine how strongly you emerge from the COVID-19 crisis. Join us for a virtual workshop...
Read more
September 28, 2016 Data Breach Live Presentation | September 28
Friedman LLP and HUB International Northeast will host an event titled, “Data Breach Live” in which professionals will get the...
Read more
November 9, 2015 Boardsource Leadership Forum 2015 Invites Friedman LLP Speakers
Friedman LLP is proud to be speaking this year at the Boardsource Leadership Forum on November 9-10 in New Orleans. Amish...
Read more
September 28, 2015 IMN Real Estate CFO Forum East | September 28-29
Friedman LLP is pleased to announce this year’s sponsorship of the IMN Real Estate Forum. Kevin Hyams, partner in charge...
Read more