GRC is a strategy for introducing synergy between three important functions in an organization: governance, risk management and compliance. In view of the considerable overlap between these three critical functions, a coordinated approach, as opposed to a siloed approach, goes a long way in improving information sharing and coordination.