The regulatory environment created by Sarbanes-Oxley, GLB, HIPAA and countless new regulations make it imperative that organizations, large and small, select a Chief Compliance Officer (CCO) or, more recently, The Chief Risk Officer (CRO) best suited to the position. The Board, the CEO and other line and staff executives need to rely on One Single Source for meaningful information on the company’s status on risk and compliance. The impact on Company activities and profitability can be impacted by it’s compliance to regulatory mandates. Development and use of one authoritative entity to assess risk management and compliance strategies and spearhead and coordinate Governance, Risk management and Compliance (GRC) programs on an "enterprise-wide" basis is essential. To do so, the right person must fill that role.