Integrating Enterprise GRC and IT-GRC Programs on a Single Framework

  • LANGUAGE: English DATE: Friday, November 19, 2010 TIME: 16:00 CET, 10am EST
Upcoming Webinars

This webinar will highlight how organizations can manage risk better across their IT and business processes, thus enabling them to determine potential impact considering both IT and business controls.

Today, most organizations manage their IT-GRC programs separately from their enterprise GRC efforts, focusing primarily on the business view of risks (operational and strategic) and compliance. As a result of uncoordinated overall GRC initiatives, they face issues like increased cost, inappropriate management of key IT risks and business controls, inefficient security management tools and lack of effective critical decision making which could escalate the risk to the organization causing significant business impact.

Successful integration of the IT GRC processes with Enterprise GRC programs with a common framework such as Cobit, COSO, ISO 27002 etc. will eliminate silos, standardize processes and improve collaboration. It will also help the organization to remove the silos within GRC by incorporating continuous monitoring of IT risk and compliance metrics into business process risk management thereby providing immediate value with reduced complexities and lower costs inherent in the overall GRC management.

Join this webinar to discuss:

  • Extending Enterprise GRC solutions to incorporate IT GRC programs
  • Correlation between Enterprise Risk and IT Risk
  • Successful application of GRC principles to IT processes through an integrated framework
  • Benefits of IT solution to integrate and automate GRC and IT GRC processes to achieve harmonization and efficiency
  • Continuous monitoring of both IT and business controls to protect business value and manage risk

Martin Kuppinger, Principal Analyst at KuppingerCole, will first give you an overview on strategies to integrate enterprise GRC and IT GRC and the achievable benefits from such an integration, followed by Jonathan Curtis of MetricStream, who will talk about his practical experiences i.e. in integrating and automating GRC and IT GRC processes.


Jonathan Curtis is a veteran Silicon Valley entrepreneur with experience in enterprise software technology introduction and adoption. Throughout his career, Jonathan has focused on improving business performance while making technology easier to use. Jonathan is managing the expansion of...

Gold Sponsor

MetricStream, an enterprise software and content company, is the market leader delivering Governance, Risk, Compliance (GRC) and Quality Management solutions for large global organizations addressing multiple regulations and industry mandates. Leading organizations across the world are using the MetricStream solution to identify, assess, quantify, monitor and manage their Risk and Compliance mandates in accordance with industry standards. This includes streamlining key processes for managing IT policies, IT risks, IT compliance and IT audits while enabling multiple stakeholders to have real-time visibility into their risk profile, lower their cost of regulatory compliance and reduce their risk of non-compliance.

Watch now


Trending Videos

Next Webinar


Managing Cyber Risk in a Hybrid Multi-Cloud IT Environment

Today’s IT environments blend applications and services from multiple public cloud networks, private clouds and on-prem networks, making it difficult to view and inventory assets deployed across complex hybrid networks, and keep track of the security risks. Organizations need to find a way to improve visibility, identify and prioritize risks, and maintain cyber resiliency.

Become a Sponsor


+49 211 23707710
Mo – Fr 8:00 – 17:00