GRC
GRC goes into the Cloud – Express Computer
eGestalt has announced the availability of SecureGRC, a solution that provides an end-to-end integration of security monitoring with IT-Governance, Risk Management and Compliance (IT-GRC) management solutions using a cloud-based delivery model.
via GRC goes into the Cloud – Express Computer.
CXOtoday.com > IT-GRC Solution on Cloud
There is built in framework support for RBI Compliance, NSE, BSE, MCDEX, PCI, ISO, COBiT, SOX, BASEL II, HIPAA, FISMA, and other country specific frameworks which are ready to use. SecureGRC has a not-so-far-seen value-add in terms of integrating, synergizing and transforming information from various sources into alert raising actionable solutions, helping in identifying the [...]
The changing nature of governance, risk, and compliance
In my ongoing work with clients, I try as often as possible to stress the importance of flexibility in GRC programs. Internal processes and technology implementations must be able to accommodate the perpetually fluctuating aspects of business, compliance requirements, and risk factors. If GRC investments are made without consideration for likely requirements 1 to 2 [...]
New proposed regulations in the US #Compliance #GRC
New legislation continues to pass at a fast clip in the US under the new administration, some of the most revealing actions taken so far include:
May 20, 2009 – President Obama signed the Fraud Enforcement and Recovery Act of 2009.
June 12, 2009 – United States Congressman Gary Peters introduced his Shareholder Empowerment Act to the [...]
Forrester Research Podcast
Robert Whiteley and Chris McClean
“The GRC Technology Puzzle: Getting All The Pieces To Fit”
via Forrester Research.
IT-GRC Benchmark Survey – Aberdeen Group – FREE Report (a $399 value)
Aberdeen Group, a well known research organization, is conducting a benchmark survey on IT-GRC. The response from this survey will be the foundation of their IT-GRC report in March.
Participants who respond to the survey (15-30 minutes long) will receive a complimentary copy of the final research report by Aberdeen (a USD 399 value).
Please click on [...]
Archer Sets Its Sights On IT GRC Rival, Acquires Brabeion
Top contenders in the IT governance, risk, and compliance market merged on Tuesday as Archer Technologies announced it is acquiring Brabeion Software. Forrester projected consolidation as a key GRC market trend for 2009, and we explored the issue further for IT GRC vendors in our report, “Consolidation Looms for the IT GRC Market.”
This was a [...]
The Forrester Blog For Security & Risk Professionals
Thomson Reuters Gets A Jump On Holiday Shopping, Acquires Paisley
Keep an eye out in the next week for Forrester’s GRC Trends 2009 report, which will take a look at how a decidedly rocky end of 2008 will impact those responsible for various aspects of corporate governance, risk management, compliance, audit, and finance… as well as [...]
IT Management Building an IT Governance Foundation – Baseline
While organizations have similar goals such as controlling costs and achieving data consistency, IT departments across government, corporations and nonprofits operate differently. IT management needs an overarching governance model like CobiT, ITIL, CMM and Six Sigma to ensure that investments in technology generate business value and mitigate risks.
Information technology governance defines the overall structure, policies, [...]
Inquiry Spotlight: Governance, Risk, And Compliance, Q4 2008 by Chris McClean – Forrester Research
Governance, risk, and compliance (GRC) continues to be a hot topic of interest for security and risk professionals. Between July 2007 and July 2008, Forrester’s security and risk management team received 1,798 inquiries on a variety of topics — 198 of which were from clients interested in GRC. Of the GRC-related inquiries recorded, 46% covered [...]
