The Evolution of GRC Software

The birth of Oracle GRC
The birth of Oracle GRC

Why Advanced Controls are needed for ERP systems. Everything you need to know about the evolution of software that manages and automates Governance, Risks and Compliance controls.

This panel discussion is the first part of our "Oracle GRC: Dead Product or Brave New World?" that has been put together especially for Oracle GRC customers to help them understand their options going forward.

We have brought together a special group of GRC pioneers who grew up in the GRC space together and have more than 100 years-worth of insight to share in this discussion.


The beginnings of GRC software

Evolution of GRC controls for the enterprise

The downfall of GRC with Big Tech acquisitions

The risks using legacy GRC software creates

Why Advanced Controls are needed for ERP systems

The future of GRC

This is an invaluable session, an opportunity to join a panel of GRC veterans who witnessed the beginnings of GRC and have a wealth of knowledge to guide you into the next-generation of Governance, Risk and Compliance.

Having been in the GRC space 30 plus years they also share some quirky anecdotes:

  • Did you know that Oracle out started as green screen application?
  • Back in the late 90’s Oracle support was a user guide, a technical implementation guide and an 1-800 number!
  • In the late 1990’s Segregation of Duties was still done manually in a spreadsheet.
  • Nigel King is the “Godfather” of GRC software who bought the very first GRC product to market with Oracle
  • ICM was born due to Nigel making enough noise to Oracle Executives that audit automation was something they needed to explore!


Brian O’Neil who has 15 years of experience dedicated to serving clients in the Oracle GRC space and specializes in providing GRC strategy as well as business process and internal control design services.

Jannie Wetzel is a recognised thought leader in Risk Transformation on Integrated Risk Management technologies and has more than 20 years GRC experience.

Adil Khan, co-author of the Governance, Risk and Compliance Handbook for Oracle Applications together with Nigel King, Adil has delivered 50+ presentations on GRC at recognised global events and conferences.

Nigel King former VP at Oracle who brought the first of the GRC products that was part of an ERP platform to market for Oracle.

Speaker Bios

Brian O’Neil is the Founder and Managing Director of Appssurance, Inc., the leading provider of Oracle Governance, Risk and Compliance (GRC) solutions. Brian has 15 years of experience dedicated to serving clients in the Oracle GRC space and specializes in providing GRC strategy as well as business process and internal control design services to global organizations. Prior to Appssurance, Brian was in senior management within the Technology and Security Risk Services practice at Ernst & Young. Brian held many leadership positions during his tenure at Ernst & Young including leading the Firm's US and Global Oracle GRC service line, the Metro New York Area's ERP assurance practice and the Southeast Area's IT Risk Advisory Solutions practice. In addition, Brian was one of five members on E&Y's global ERP assurance leadership team and was responsible for the strategic direction and growth of the service line. Prior to Ernst & Young, Brian worked as an applications consultant for Oracle Corporation.

Jannie Wentzel is a thought leader in Risk Transformation on Integrated Risk Management technologies. The management of the compliance and risk requirements are complex in today's ever changing business and compliance environment. Jannie advises clients on the use of technologies to reduce the complexities, manage risk and minimize the compliance cost.

Jannie specializes in enterprise and integrated risk services which included teaming with many of the top analyst rated GRC vendors. He has extensive experience in leading projects encompassing GRC Strategy; GRC business process improvement; GRC convergence and integration strategy; and GRC technology implementation (RSam, ServiceNow, BWise(NASDAQ), RSA Archer, Workiva, Riskonnect, and Lockpath). Jannie provides services to clients across the full lifecycle of process improvement through enablement via technology and system implementation to help companies more effectively manage oversight and assurance functions.

Nigel King is a highly accomplished and results-driven Executive with over 25 years of success strengthening software engineering for global software providers, across sales, consulting and development, manufacturing, distribution, and finance. Nigel has a proven track record of orienting the development and implementation of business software, leveraging broad business knowledge to launch successful products from concept to market while driving scalable technical solutions to ensure sustainable profit performance. Nigel co-authored “Governance, Risk and Compliance Handbook for Oracle Applications” with Adil Khan and was VP at Oracle for 10+ years as part of the design and delivery of key architecture for software applications.

Adil Khan is CEO at SafePaaS with over 15 years of experience in enterprise business systems. Adil also serves on the board of the Oracle Applications Users Group Internal Controls and Security Interest Group (OAUG-ICSSIG). Adil has authored “Governance, Risk and Compliance Handbook for Oracle Applications”. He has delivered over fifty presentations on GRC trends, best practices and case studies at many industry conferences including Gartner GRC Summit, IIA, ISACA, Collaborate, UKOUG and Oracle OpenWorld. Adil has successfully designed and implemented internal controls management systems for more than 15 global companies listed on the NYSE and NASDAQ.
His expertise includes streamlining and automating Governance Risk and Compliance processes based on industry standards such as ERM-COSO and CoBIT. Prior to joining SafePaaS, Adil served as the Chief Executive Officer and board member at Alternate Marketing Networks, Inc. a NASDAQ listed company.

The second session of our Oracle GRC Dead Product or Brave New World? event can be found here. This session explores how organisations really can keep running Oracle GRC even after development ceases product updates. This is a must-see session for all Oracle GRC customers presented by Appssurance Brian o'Neil, SafePaaS CEO Adil Khan and former SmartDog President Scott Elequin. The panel explore the different options available to you including:

  • Continue to Use EBS with Oracle GRC
  • Use a Product Like Oracle Risk Management Cloud with ERP Cloud
  • Leverage a 3rd party controls application for GRC+ Requirements

But focus on the first option which is to continue to use  Oracle E- Business Suite with Oracle GRC.