Governance, Risk & Compliance
Helping clients to manage audit, risk and compliance needs in a comprehensive manner.
In a Nutshell
Today’s business challenges, deriving from rapidly expanding regulatory and compliance requirements, drive companies to optimize various impacted processes.
We, as technology enabled GRC experts, help clients to manage audit, risk, and compliance needs in a comprehensive manner. Our integrated approach to GRC management allows companies to significantly reduce related costs.
Expect From Us
Ready-to-deploy, comprehensive suite designed to fully coordinate governance, risk, and compliance activities, as well as information flow for all levels in any organization.
Our Technologies
Our team utilizes market-leading solutions and services that allow us to create cloud-ready, scalable and efficient IT solutions.

Analytics & Data Science, Data Visualization
Visualize and analyze. Reach deep and extract right insights. Discover the data.

Web & Mobile development
Always remember about user experience. Stay user friendly. Develop quickly.

Infrastructure
Move to the cloud. Adapt your infrastructure. Build growth based on proven solutions.
Our Team
Transformation requires team cooperation and readiness for change. With our 350+ highly qualified engineers we can help any enterprise transform into the most digitally advanced organization.

Jan Anisimowicz
Chief Portfolio Officer, Member of the Management Board
I am an IT Manager with 18 years of experience in data warehousing, Business Intelligence, data analysis, risk, audit and compliance management. I am skilled in the areas of System Architecture and Design, Issue Management, and efficient team management. Recently I have been involved in data privacy and lean GDPR processes. Currently holding the following certificates: PMP, Prince2, CISM, and CRISC.
Education: Warsaw Military University of Technology, MSc. in Information Systems & Cybernetics,
Koźminski University, MBA in IT and Management & Marketing

Jacek Wróblewski
Head of AdaptiveGRC
I have been working at C&F for 11 years; my experience includes project management, product development and marketing. Before I started working with C&F, I worked in consulting as well as in the marketing industry. As a manager, I focus on business opportunity evaluation, knowledge and idea management, identity and access management, office and process automation.
My role in C&F is to support and develop AdaptiveGRC – a governance, risk and compliance solution suite for companies.
Education: SGH Warsaw School of Economics, MA in Economics, Quantitative Methods & Information Systems

Łukasz Krzewicki
Audit, Risk & Compliance Expert
I am a consultant and project manager with more than 20 years of experience in telecommunications, consulting and IT. At C&F I am responsible for the Governance, Risk and Compliance business line, product roadmap and development planning. Thus, I am the go-to person in GRC related topics.
For the last couple of years, I was involved in delivering tailored solutions that are based on the world’s best practices and integrate with clients' specific culture and requirements.
My specialties include: Risk management (Certified CRISC), Service Delivery Management, Security Management (Certified CISM), Software Product Management, SCRUM, CRM, Compliance in the Pharma industry, Business Process improvements.
Education: SGH Warsaw School of Economics, MSc in Economics;
Warsaw Technical University, Quality Management
Client Success Stories
Latest Articles
Test automation engineer, the desired skillset
Many manual testers would like to start their journey with developing automated tests, however, without a good learning path and some technical background, the road seems to be a bit bumpy. What skills should you develop to become a professional test automation engineer?
How to develop quality software in agile? Five important aspects of agile testing
Agile testing is the new normal. There is no coming back to the waterfall approach in development or in testing. How to implement agile development right and to deliver quality software on time in an agile environment?
Data Lake: Agile, Unstructured, but Governed and Controlled
A Data Lake is not a tool, nor a specific solution or product that a company can buy, install, and use. As a reference architecture, it is an organization’s mode of approach to using data in its operations. How to introduce the Data Lake and stay compliant with industry regulations?
New technologies for test automation to watch in 2022
A review of low and no-code tools, programming libraries and packages that can be used by enterprises, as well as by smaller companies to boost their test automation. Some are new, others have already been on the market for a while. All of them are worth giving a try.
Brains and muscles. How to allocate roles in scaled agile?
When IT projects grow to a large scale, original agile is not enough. If you have hundreds of people involved in your project, you need a managing superstructure and new roles. SAFe adds a structure to agile, which is built of additional roles and ceremonies.
Why low-code is the antidote to technical debt
Consumers want better service, better user experience, better functionality, new products and new solutions, RIGHT NOW. This creates enormous pressure, so companies race to innovate and launch quickly. But there are bear traps: innovation and development go hand in hand with technical debt.
Data-driven public healthcare resources management done right
How did governments deal with digital tools in their battles against the epidemic? Did any country fare significantly better than others? In the long run of the pandemic, Germany has made several important decisions and developed relatively successful procedures to manage the COVID-19.
Leave the spreadsheet behind — an essential guide to audit software
There are many audit software solutions on the market. The challenge is how to choose the best one of them? Which features are crucial for your auditors and your business?
Low-code: more an enterprise strategy than simple apps & citizen development
Low-code is a fast and relatively inexpensive way to create business applications. Low-code also means low barriers (no need for advanced programming skills) to start developing apps. Is citizen development the future of IT? Will this be the main way for organizations to acquire new IT applications?
Data lake in the pharmaceutical industry: 5 things to keep in mind to get it right
A data lake is a collection of variously structured data coming from different sources and available for different users. It seems that such a solution may mean chaos. Meanwhile, it's used by companies from highly regulated environments, like pharma.
Let`s Talk About a Solution
Questions?We’re here to answer them.
Our engineers, top specialists, and consultants will help you discover solutions tailored to your business. From simple support to complex digital transformation operations – we help you do more.
