Business Report: GRC Market Structure
Report Details
GRC stands for Governance, Risk Management, Compliance. It is used to describe Information Tech-nology which supports these specific business requirements. This report provides a segmentation of the overall GRC market with its different elements, from the C-level dashboards down to technical elements which are required to provide information for automated controls and the automated re-mediation in case that defined thresholds of controls aren’t met. The core elements are
- Business GRC
- Operational GRC
- Generic IT GRC and CCM (Continuous Controls Monitoring)
- Specialized IT GRC tools
- Technical “support” tools
We recommend drawing a big picture as target for an integrated GRC view, like the Enterprise GRC architecture shown in this report. This can act as the guideline for GRC initiatives across the entire organization – and it addresses some specific project risks, especially because it mandates interoperability between different elements within this picture and thus avoids investments in point solutions which aren’t able to integrate.
In parallel, the GRC organization has to be built which focuses on the definition and enforcement of policies and the implementation and execution of controls across all layers. That takes some time. Anyhow, organizations can start today with their GRC investment by putting tactical investments at different levels into a strategic frame – the one we’ve discussed in this report.
| Date | Title | Price | |
|---|---|---|---|
| May 02, 2010 |
Business Report: GRC Market StructureGRC stands for Governance, Risk Management, Compliance. It is used to describe Information Tech-nology which supports these specific business requirements. This report provides a segmentation of the overall GRC market with its different elements, from the C-level dashboards down to… |
€165.00 |
Get Access
|
INVOICE
|
|||
Discover KuppingerCole
KuppingerCole Select
Register now for KuppingerCole Select and get your free 30-day access to a great selection of KuppingerCole research materials and to live trainings.
Blog
Some Perspective on Self-Sovereign Identity
Identity isn't hard when you don't always use it. For example, here in the natural world we are anonymous—literally, nameless—in most of our public life, and this is a handy thing. Think about it: none of us walks down the street wearing a name badge, and it would be strange to do so. A [...]
Latest Insights
Hot Topics
Spotlight
Learn more
Privacy & the European Data Protection Regulation
The EU GDPR (General Data Protection Regulation), becoming effective May 25, 2018, will have a global impact not only on data privacy, but on the interaction between businesses and their customers and consumers. Organizations must not restrict their GDPR initiatives to technical changes in consent management or PII protection, but need to review how they onboard customers and consumers and how to convince these of giving consent, but also review the amount and purposes of PII they collect. The impact of GDPR on businesses will be far bigger than most currently expect. [...]