0
Trends in GRC ManagementJeff Kushner, Director of Marketingjeff.kushner@modulo.com<br />
Modulo Leadership<br />25+ years experience in IT security and GRC management<br />300% US growth (09-10)<br />Over 400 em...
Complexity and Risk Continue to  Increase<br />Source: An Executive View of IT Governance,<br />IT Governance Institute<br />
Constant Change<br />Regulations<br />Polices<br />People<br />Processes<br />Technology<br />Technology<br />Technology<b...
Fragmented Approach to GRC Management<br />People<br />People<br />People<br />Technology<br />Technology<br />Technology<...
Lack of automation
Little Consistency
Limited visibility</li></li></ul><li>Automation, Practice and Policy in Information Security for Better Outcomes, IT Polic...
Automation, Practice and Policy in Information Security for Better Outcomes, IT Policy Compliance Group<br />
Global survey into the integration of governance,risk and compliance, KPMG<br />
Global survey into the integration of governance,risk and compliance, KPMG<br />
IT Balancing Enterprise Risk and Reward, Aberdeen Group<br />
IT Balancing Enterprise Risk and Reward, Aberdeen Group<br />
Beyond Demonstrating Compliance, Aberdeen Group<br />
Beyond Demonstrating Compliance, Aberdeen Group<br />
Value of a CommonArchitecture for GRC Platforms, Michael Rasmussen<br />The goal: An enterprise view of risk and complianc...
Value of a CommonArchitecture for GRC Platforms, Michael Rasmussen<br />Foundations of a GRC Technology Architecture<br />...
References<br />http://www.itgi.org/<br />http://www.itpolicycompliance.com/<br />http://www.kpmg.com/Global/en/IssuesAndI...
Modulo<br />The Company<br />
Example of Modulo Clients<br />South Carolina Department <br />of  Health and Human Services<br />
Modulo GRC Metaframework<br />
Upcoming SlideShare
Loading in...5
×

Jeff kushner trends in grc management

480

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total Views
480
On Slideshare
0
From Embeds
0
Number of Embeds
0
Actions
Shares
0
Downloads
26
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide
  • Modulo is the industry’s leading global provider of automated Governance, Risk and Compliance (GRC) management solutions.  Our Award-winning Risk Manager™ Software delivers a consistent out-of-the-box solution that simplifies the management of the GRC life-cycle which significantly reduces management costs and corporate risk.   Unlike other non-integrated GRC solutions, Modulo provides quick visibility into the corporate risk and compliance posture for executives, management and technical staff . To effectively and effectively measure, manage and proactively sustain risk mitigation, compliance obligations and governance objectives.
  • THE MODULO ADVANTAGE Automate the manual fragmented approach to GRC management -Distributed database driven platform with common policy, asset, reporting and incident repository Comply with multiple regulations- Effectively manage the policy lifecycle and map multiple policies to common controls Lower IT and enterprise risk- Consistently measure and communicate risk posture across enterprise Reduce cost of people resources and IT infrastructure overhead- Automate common tasks and leverage technology in place without adding the complexity of agents Know where you stand quicker = ROI- Get value in hours not days or weeks from 25 years of experience in IT security and GRC management expertise
  • Transcript of "Jeff kushner trends in grc management"

    1. 1. Trends in GRC ManagementJeff Kushner, Director of Marketingjeff.kushner@modulo.com<br />
    2. 2. Modulo Leadership<br />25+ years experience in IT security and GRC management<br />300% US growth (09-10)<br />Over 400 employees world-wide<br />Global Leader- Automated GRC Management Solutions <br />Nine-year of development, a mature product<br />Active member of evolving GRC standards<br /> ISO 27001, ISO 31000, PCI SVA & Shared Assessments/Bits Initiative<br />1st company in the world to obtain ISO 27001 certification<br />ISO 9001 certified since 1998<br />
    3. 3. Complexity and Risk Continue to Increase<br />Source: An Executive View of IT Governance,<br />IT Governance Institute<br />
    4. 4. Constant Change<br />Regulations<br />Polices<br />People<br />Processes<br />Technology<br />Technology<br />Technology<br />Technology<br />Policy<br />Policy<br />Process<br />Process<br />Process<br />People<br />People<br />
    5. 5. Fragmented Approach to GRC Management<br />People<br />People<br />People<br />Technology<br />Technology<br />Technology<br />Process<br />Process<br />Process<br />Facility<br />Facility<br />Facility<br /><ul><li>No common platform
    6. 6. Lack of automation
    7. 7. Little Consistency
    8. 8. Limited visibility</li></li></ul><li>Automation, Practice and Policy in Information Security for Better Outcomes, IT Policy Compliance Group<br />
    9. 9. Automation, Practice and Policy in Information Security for Better Outcomes, IT Policy Compliance Group<br />
    10. 10. Global survey into the integration of governance,risk and compliance, KPMG<br />
    11. 11. Global survey into the integration of governance,risk and compliance, KPMG<br />
    12. 12. IT Balancing Enterprise Risk and Reward, Aberdeen Group<br />
    13. 13. IT Balancing Enterprise Risk and Reward, Aberdeen Group<br />
    14. 14. Beyond Demonstrating Compliance, Aberdeen Group<br />
    15. 15. Beyond Demonstrating Compliance, Aberdeen Group<br />
    16. 16. Value of a CommonArchitecture for GRC Platforms, Michael Rasmussen<br />The goal: An enterprise view of risk and compliance on a common architecture<br />The Value: A common architecture relieves the GRC burden on the business<br />Disconnected risk and compliance processes introduce greater exposure<br />Manual processes drive inefficiency and raise GRC costs<br />GRC, done right, delivers efficiency and value to the organization<br />
    17. 17. Value of a CommonArchitecture for GRC Platforms, Michael Rasmussen<br />Foundations of a GRC Technology Architecture<br />A common user interface (screen design) for all applications<br />A common workflow engine throughout the applications<br />A common security model to protect applications and data<br />A common programming language used to build the applications<br />A common database used to run the applications<br />A common enterprise architecture (a method for describing the departments and divisions within the organization)<br />
    18. 18. References<br />http://www.itgi.org/<br />http://www.itpolicycompliance.com/<br />http://www.kpmg.com/Global/en/IssuesAndInsights/ArticlesPublications/Pages/The-convergence-challenge-Global-survey.aspx<br />http://www.modulo.com/research/ (Aberdeen Reports)<br />http://www.corp-integrity.com/<br />
    19. 19. Modulo<br />The Company<br />
    20. 20. Example of Modulo Clients<br />South Carolina Department <br />of Health and Human Services<br />
    21. 21. Modulo GRC Metaframework<br />
    22. 22. The Modulo Advantage <br />Automate the manual fragmented approach to GRC management <br />Comply with multiple regulations<br />Lower IT and enterprise risk<br />Reduce cost of people resources and IT infrastructure overhead<br />Know where you stand quicker = ROI<br />
    1. A particular slide catching your eye?

      Clipping is a handy way to collect important slides you want to go back to later.

    ×