GRC
Privacy software: Who are the early leaders? – software, security, privacy, ControlCase, Consult2Comply, brinQa, Avior Computing, Archer, applications, Agiliance – Security & Email – PC World Business
Together they form what I’d call the “privacy GRC” market, where GRC stands for “governance, risk and compliance.” GRC makes up most of what privacy people do. It’s not a big market. To put things into perspective, Gartner is only in its third year of analyzing the nascent IT GRC market. The privacy GRC market [...]
13 essential steps to integrating control frameworks – CSO Online
# The organization must understand which frameworks or framework elements are needed to address, at a minimum, the critical security concerns. When addressing control requirements, more is not necessarily better, and each additional control entity represents an investment in time, money, and effort. # Choose a base framework to use. An organization should identify a [...]
GRC goes into the Cloud – Express Computer
eGestalt has announced the availability of SecureGRC, a solution that provides an end-to-end integration of security monitoring with IT-Governance, Risk Management and Compliance (IT-GRC) management solutions using a cloud-based delivery model. via GRC goes into the Cloud – Express Computer.
CXOtoday.com > IT-GRC Solution on Cloud
There is built in framework support for RBI Compliance, NSE, BSE, MCDEX, PCI, ISO, COBiT, SOX, BASEL II, HIPAA, FISMA, and other country specific frameworks which are ready to use. SecureGRC has a not-so-far-seen value-add in terms of integrating, synergizing and transforming information from various sources into alert raising actionable solutions, helping in identifying the [...]
The changing nature of governance, risk, and compliance
In my ongoing work with clients, I try as often as possible to stress the importance of flexibility in GRC programs. Internal processes and technology implementations must be able to accommodate the perpetually fluctuating aspects of business, compliance requirements, and risk factors. If GRC investments are made without consideration for likely requirements 1 to 2 [...]
New proposed regulations in the US #Compliance #GRC
New legislation continues to pass at a fast clip in the US under the new administration, some of the most revealing actions taken so far include: May 20, 2009 – President Obama signed the Fraud Enforcement and Recovery Act of 2009. June 12, 2009 – United States Congressman Gary Peters introduced his Shareholder Empowerment Act [...]
Forrester Research Podcast
Robert Whiteley and Chris McClean “The GRC Technology Puzzle: Getting All The Pieces To Fit” via Forrester Research.
IT-GRC Benchmark Survey – Aberdeen Group – FREE Report (a $399 value)
Aberdeen Group, a well known research organization, is conducting a benchmark survey on IT-GRC. The response from this survey will be the foundation of their IT-GRC report in March. Participants who respond to the survey (15-30 minutes long) will receive a complimentary copy of the final research report by Aberdeen (a USD 399 value). Please [...]
Archer Sets Its Sights On IT GRC Rival, Acquires Brabeion
Top contenders in the IT governance, risk, and compliance market merged on Tuesday as Archer Technologies announced it is acquiring Brabeion Software. Forrester projected consolidation as a key GRC market trend for 2009, and we explored the issue further for IT GRC vendors in our report, “Consolidation Looms for the IT GRC [...]
The Forrester Blog For Security & Risk Professionals
Thomson Reuters Gets A Jump On Holiday Shopping, Acquires Paisley Keep an eye out in the next week for Forrester’s GRC Trends 2009 report, which will take a look at how a decidedly rocky end of 2008 will impact those responsible for various aspects of corporate governance, risk management, compliance, audit, and finance… [...]
