Connecting IT Risk and Regulatory Change with ServiceNow IRM

When Every Transaction Tells a Story: Tackling the Rise of E-Commerce Fraud and Promotion Abuse

E-commerce has become the engine of retail growth, but it has also become the most fertile ground for fraud.

When Loyalty Becomes Leverage: The New Frontier of Retail Fraud

Loyalty programs were once the crown jewels of customer engagement engines, driving retention and personalized experiences. But over the past two years, they've become something else entirely: a new currency for fraud.

When Returns Become Risk: Navigating Retail's Quietest Billion-Dollar Threat

For many retailers, returns used to be a marker of trust, a brand promise that "you can always bring it back."

Partnering for Impact: SureStep and SAS on the Future of AI-Driven Financial Crime Prevention

Hear from Robert Wright about our partnership with SAS

Rethinking Audit: Two Big Trends Shaping 2026 and Beyond

As 2026 planning begins, leading audit teams are transforming through continuous risk monitoring and automated control assurance: turning audit from retrospective review into real-time insight.

Practical AI for AML: Three Tips to Make It Work in the Real World

Artificial Intelligence is redefining Anti-Money Laundering—here’s how to make it practical, effective, and regulator-ready.

GRC as Strategy: SureStep CEO Michael Gibbs on the CanadianSME Small Business Podcast

SureStep CEO Michael Gibbs joins the CanadianSME Small Business Podcast to discuss how GRC drives global growth, cultural agility, and innovation.

Simplifying Issues Management with AI

How Operational Risk Managers can accelerate oversight in IBM OpenPages

Focusing on What Matters Most with Impact Scores in BCM

Helping Business Continuity Managers prioritize assessments

Migrating GRC to the Cloud: Modernizing IBM OpenPages for Scalable, Managed Risk Operations

SureStep migrated an Midwest US-based insurance company’s on-premises IBM OpenPages platform to SecureGRC on AWS, modernizing infrastructure, improving automation, and delivering full-service managed support.

SureStep at Momentum 2025

Hosted by Central1, Momentum 2025 is the signature event for credit unions, financial institutions, and fintech innovators across Canada.

AI Risk: Why the “Why” Matters More Than the “How”

How your business decisions impact more than the technology when it comes to risk

Driving Principled Performance: Our Partnership with OCEG

Learn more about Principaled Performance

Continuous Risk Intelligence Meets Advisory Expertise: SureStep + SupplyWisdom

See how SupplyWisdom can connect the dots with your suppliers.

Ready to Try watsonx.governance?

Try our live demo of watsonx.governance

watsonx.governance: Governing AI with Confidence and Clarity

AI is moving from experiments to enterprise-critical tools. But with that shift comes a challenge: how do you govern AI so it is trusted, compliant, and aligned to business value?

AI in Action: How IBM OpenPages and GPT-5 Streamlined Scenario Analysis

We helped a financial institution use IBM OpenPages 9.1 Scenario Analysis with GPT-5 to pre-generate four scenarios and draft Scenario Results by team, making workshops faster, richer, and more focused on validation than creation.

IBM OpenPages 9.1: Faster Process, Risk, and Control Assessments for Operational Risk Teams

See the latest new features making a difference in Operational Risk teams globally

How SAS AML Powers Smarter Financial Crime Detection

Learn more about how SAS AML solutions can help

Why AML Success Depends on Fast, Flexible Scenario Tuning

How SureStep helps financial services companies stay ahead, faster than before

Three Things to Know About Governing LLMs Today

Governance of LLMs is less about the model itself and more about governing the use case, guardrails, and outcomes that define how it creates value and manages risk.

Model Risk in Focus: How GRC Forge Shapes Stronger Frameworks

How our GRC Forge assessment partners with Model Risk teams for success

Governing Generative AI

Designing a Risk and Compliance Framework for LLM Oversight

Inside a GRC Forge Workshop: Where Conversations Drive Clarity

The real magic of GRC Forge happens in the workshop.

Before the System: Why Strategy Comes First in GRC Transformation

Strategy needs to come first. That’s where GRC Forge steps in.

Strengthening GRC in Australia’s Community Banks

In an increasingly regulated and digitally driven landscape, Australia’s small community and customer‑owned banks face a unique challenges.

Building Strategic Confidence with SAS Model Risk Management

How SAS's MRM capabilities can grow with you, scaling your investment with Viya

SAS Innovate on Tour - Sydney

SAS Innovate on Tour in Sydney is a one‑day, free‑to‑attend roadshow targeting business leaders, technical users, and SAS partners across Asia‑Pacific.

SAS Innovate on Tour - Singapore

SAS Innovate on Tour in Singapore is a one‑day, free‑to‑attend roadshow targeting business leaders, technical users, and SAS partners across Asia‑Pacific.

COBA 2025 - Customer-Owned Banking Conference

COBA 25 is Australia’s premier gathering for the customer‑owned banking sector

Real-Time Critical Data Elements Reporting for Enhanced GRC Insights

SureStep developed a real-time Critical Data Elements (CDE) report for a leading insurer, providing enhanced visibility into GRC data across workflows, objects, and user profiles.

Building a Unified Data Lake and Data Warehouse for Enterprise Insights

SureStep designed and implemented a comprehensive Data Lake and Data Warehouse for a global services provider, enhancing data integration and governance across corporate, financial, and operational systems.

Designing a Scalable GRC Data Lake for Enhanced Compliance and Reporting

SureStep delivered a comprehensive data strategy for a global insurer, designing a future-state GRC Data Lake with robust data governance and scalable reporting.

Building a Scalable Post-Trade Risk Framework for Global Financial Institutions

SureStep delivered an integrated risk and control framework on IBM OpenPages, enhancing governance and compliance for global financial institutions.

Automating SOX Compliance: Transforming Manual Controls into an Efficient Workflow

SureStep delivered a fully automated SOX control testing system for a leading insurer, reducing testing time by 50% and eliminating manual effort.

Smart AML for Small Banks: Fast, Accurate, AI-Driven

SureStep helps smaller credit unions and banks design, optimize, and manage their Anti-Money Laundering (AML) strategies with precision. Leveraging AI for rapid detection, our fully managed service tunes scenarios, reduces false alerts, and enhances fraud detection without the complexity.

Navigating GRC in Asia-Pacific

SureStep’s GRC Forge provides a strategic roadmap for governance, risk, and compliance, tailored to the unique regulatory landscapes of Australia, Singapore, and New Zealand.

Leading by Example: Building SureStep’s ESG Program from the Ground Up

SureStep leveraged its own expertise to design, implement, and report on a comprehensive ESG program, setting a benchmark for sustainability in consulting.

Strategic GRC Assessment: Enhancing Risk Management for a Leading Financial Institution

SureStep conducted a comprehensive GRC Forge assessment for a major financial institution, providing actionable insights to optimize risk management across five teams.

Modernizing GRC for a Global BPO: From Legacy to a Scalable Cloud Platform

SureStep led the transformation of a global BPO’s GRC environment, upgrading IBM OpenPages from 7.2 to 8.0 and migrating to a SureStep-hosted AWS solution.

Cloud Transformation for Risk Management: Migrating IBM OpenPages to AWS

SureStep led a seamless cloud migration for a major financial services company, transitioning IBM OpenPages to AWS and enhancing scalability and performance.

Enhancing Risk Management for Energy Operations: A Multi-Country Framework

SureStep delivered a comprehensive Risk and Control Framework for a global energy company, enhancing governance across multiple countries and improving plant risk management.

Seamless GRC Integration: Bridging Platforms with Custom API Solutions

SureStep delivered a comprehensive integration solution, connecting a global vendor’s platform with IBM OpenPages and ServiceNow IRM, overcoming complex API and data challenges.

Streamlining AML Testing and Compliance Reporting

SureStep developed a unified AML testing and compliance reporting solution using IBM Cognos, enhancing visibility and efficiency for a global financial institution.

Unifying Internal Audit: A Government-Wide GRC Transformation

SureStep delivered a comprehensive IBM OpenPages solution, consolidating internal audit processes across a Canadian government, leveraging bilingual expertise and international GRC experience.

Accelerating Model Risk Governance: Legacy Migration to SAS MRM

SureStep delivered a complex, high-stakes migration from a legacy Model Risk Governance platform to SAS MRM on SAS Viya, ensuring compliance and efficiency.

Join us @ SAS Innovate 2025

SureStep's team of experts will be in Orlando, FL to join industry experts on Financial Crimes and more.

Continuing Our Progress Toward Net Zero - 2024 Climate Report

SureStep's 2024 Carbon Results

From E-23 to C-27: Exploring the Future of Model Governance

Join us for an insightful webinar where leading experts will delve into the evolving landscape of AI governance in the insurance sector.

SureStep Announces Strategic Partnership with SAS to Revolutionize Financial Crimes Management

AML Transformation: From Compliance Burden to Strategic Advantage

Modern AML Challenges: Are Legacy Approaches Still Effective?

AI powered GRC Digital Twin with IBM OpenPages

In today’s fast-paced business environment, organizations are constantly seeking ways to streamline their GRC. AI has emerged as a game-changer in this domain, offering innovative solutions to automate complex workflows and enhance user interaction with GRC systems.

Empowered Systems Announces Strategic Partnership with SureStep

Learn more about our new collaboration with Empowered Systems

SureStep Celebrates New Milestone

SureStep Celebrates Milestone as Silver IBM Business Partner Specializing in IBM OpenPages

IBM OpenPages Connector for CUBE

Learn about our new connector for CUBE

OpenPages Connector for CUBE

Learn about our new connector for CUBE

ServiceNow Connector for CUBE

Learn more about our CUBE connector for ServiceNow

Watch the latest about Automation & AI with SureStep CEO, Mike Gibbs & Charits

Access the latest video from SureStep & Chartis about how to best leverage Automation and AI in your GRC program.

Streamlining Regulatory Change with AI Technology

Streamline regulatory change management with AI. SureStep shows how to efficiently monitor, delegate tasks, and ensure compliance accuracy.

Risk Americas Convention — 12th Annual | 23-24 May 2023 | New York City

Join the SureStep team at this years Amercia's premier financial risk and innovation convention 2023.

Financial Issue Management

SureStep was engaged to assist with the architecture and systems development for creating a unified financial issue platform.

GRC Managed Hosting/Service

As one of the largest legacy insurance and annuity companies, servicing over 100 of the Global Fortune 500 companies, the organization required a robust risk management system.

Process Optimization

A leading business process outsourcer for transportation and government services in the U.S. engaged us to review and optimize their approach to managing risk.

Risk Platform Implementation

A world leader in the provisioning of horse racing and betting entertainment is under enormous regulatory pressure and scrutiny to ensure the protection of its clients’ privacy.

Taxonomy and Master Records

SureStep was engaged by a leading Life Insurance provider to integrate their two risk management platforms to create a single source of risk.

How Corporate Boards Should Handle Technology Governance

Harvard Law School (HLS) identified risk management as one of the key issues for corporate governance in 2023. Let's explore how boards play a role in technology governance.

How GRC Is Integral to ESG

Environmental, social, and governance (ESG) is becoming a critical factor for organizations as they anticipate stricter standards for climate-related reporting.

SEC Mandates for ESG Are on the Way

Is Your Organization Prepared? On May 25, 2022, the US Securities and Exchange Commission (SEC) proposed a new set of rules regarding Environmental, Social, and Governance (ESG) measures for publicly traded companies.

6 Reasons Why ESG Is Integral to Your Business

Let’s take a look at what the last few years has thrown our collective way. We’ve had, and are still going through, a global pandemic. There’s been trade wars with countries, and actual wars within and between countries.

Compliance with The Climate Pledge

So, Your Organization Signed the Climate Pledge. What’s Your Next Step? In 2019, Amazon co-founded The Climate Pledge with Global Optimism, a purpose-driven enterprise dedicated to achieving social and environmental change.

How AI Changed the Way Companies Approach Risk Management

Artificial intelligence has been around since the 1950s, but it wasn\’t until recent years that companies started to see a real need for AI and its use in their business.

Canadian Consulting Firm Surestep Expands To Singapore

SureStep, a Canada-based company specializing in systems integration & consulting with offices in Canada, the US, and Hong Kong, is announcing that they will be expanding into Singapore.

Driving value from GRC

In today’s fast-changing business environment, an effective governance, risk and compliance (GRC) programme is increasingly seen as a foundation of agile decision-making.

The Future of Artificial Intelligence in Manufacturing

For a large group of industries such as gaming, banking, retail, commercial, and government etc, AI is extensively used and is slowly creeping into the manufacturing sector, facilitating the industrial Automation.

A Guide to Open Insurance

Insurers face unprecedented challenges as the insurance sector becomes more vulnerable to disruption. Increasing competition from rivals and advancements in digital technologies are pushing them to the edge.

Singapore’s Payment Services Act and The Need For A Solid GRC Program

Technology is the catalyst that has been expediting the evolution of different businesses. Software and systems that used to be a luxury and additives for businesses are now considered a necessity.

Digital Workshop: Don’t Get Derailed by Compliance & Regulatory Risks

Join us for our risk and compliance webinar featuring business management system consultants Anitech Pty Ltd and Systems Advisory Services Limited to find out how you can transform the way your business meets compliance and manages regulatory risk.

SureStep Fortress successfully achieved Singapore FinTech Association Certification

We're excited to announce that we've recently achieved certification by the Singapore FinTech Association with our SureStep S2 Fortress offering.

Asia Risk Congress 2022

The Asia Risk Congress addresses the latest risk management strategies, financial innovations, regulatory developments, and tech advances.

2022 RegTech Innovation Summit

Fireside Chat | Digital transformation and RegTech, what steps to take to survive and succeed

2021 RegTech Summit

2021 RegTech Summit: The industrial journey to AI adoption under proper governance

Asia Risk Congress 2020

Asia Risk Congress Day 2: 10:50 Session