Last week when i
was giving a seminar , there was a question from one of the audience that who
all are the famous GRC vendors available in the market, then i asked him "
What makes a software vendor’s product a GRC product?" , He started
responding something, I asked him " how to differentiate among ERM, compliance
applications and GRC " the story went on....Later thought of
compiling this list.
What is GRC , What
are all the GRC Products available in Market ?
“Organizations are
inundated with IT vendors claiming to have the answer for their risk and
compliance problems. However, most of these vendors provide capabilities to
meet only a single requirement or a handful of requirements and really are not
a risk and compliance management vendor themselves. Real risk and compliance
vendors provide a platform for documenting and overseeing risk and compliance
across an organization.
The fragmentation
of the market and misleading terminology used in software vendors’ marketing
makes it hard to identify “real” GRC vendors. For the moment the list below is
based on companies mentioned in the Gartner Magic Quadrant for Enterprise
Governance, Risk and Compliance Management.
SAP
The German business software company provides a diverse GRC suite.
The German business software company provides a diverse GRC suite.
CA
The provider of IT management software released its GRC Manager in September 2007.
The provider of IT management software released its GRC Manager in September 2007.
IBM
IBM sells mostly third-party tools together with its own GRC contents and procedures.
IBM sells mostly third-party tools together with its own GRC contents and procedures.
IDS Scheer
The GRC platform of IDS Scheer is architected around the ARIS Risk & Compliance Manager.
The GRC platform of IDS Scheer is architected around the ARIS Risk & Compliance Manager.
MetricStream
( Now PWC have JV with this company in GRC Space)
MetricStream offers comprehensive services for audit, compliance, risk and policy management on its enterprise GRC platform.
MetricStream offers comprehensive services for audit, compliance, risk and policy management on its enterprise GRC platform.
Paisley
Founded in 1995, Paisley is one of the leading GRC software vendors with its products “Paisley Enterprise GRC” and “GRC on Demand”. In 2009 it was acquired by Thomson Reuters, combining GRC technology with Thomson Reuters business information.
Founded in 1995, Paisley is one of the leading GRC software vendors with its products “Paisley Enterprise GRC” and “GRC on Demand”. In 2009 it was acquired by Thomson Reuters, combining GRC technology with Thomson Reuters business information.
Protiviti
The risk and internal audit consulting company also offers software along with its services.
The risk and internal audit consulting company also offers software along with its services.
Rsam
Rsam is the d.b.a name for Relational Security Corporation and was founded 2003.
Rsam is the d.b.a name for Relational Security Corporation and was founded 2003.
Wolters Kluwer
The Dutch company offers GRC services leveraging self-built products. In July 2009 they acquired GRC software competitor Axentis.
The Dutch company offers GRC services leveraging self-built products. In July 2009 they acquired GRC software competitor Axentis.
Other vendors
Sword Achiever
“Sword Achiever” is a unified GRC management solution that covers many GRC relevant areas.
“Sword Achiever” is a unified GRC management solution that covers many GRC relevant areas.
Archer Technologies
Archer provides enterprise risk management and compliance solutions centered around its SmartSuite Framework.
Archer provides enterprise risk management and compliance solutions centered around its SmartSuite Framework.
Axentis
Axentis Enterprise is a portfolio of integrated GRC applications built upon a shared foundation of software services. In July 2009 Axentis was acquired by Wolters Kluwer.
Axentis Enterprise is a portfolio of integrated GRC applications built upon a shared foundation of software services. In July 2009 Axentis was acquired by Wolters Kluwer.
BI International
BI International offers GRC capabilities on its Aline platform.
BI International offers GRC capabilities on its Aline platform.
BWise
Building on a strong business process management heritage, BWise covers GRC with a variety of software products.
Building on a strong business process management heritage, BWise covers GRC with a variety of software products.
DoubleCheck
The DoubleCheck™ GRC & Audit Platform provides all four elements of a complete Enterprise GRC solution: Audit Management, Compliance Management, Risk Management and Policy Management.
The DoubleCheck™ GRC & Audit Platform provides all four elements of a complete Enterprise GRC solution: Audit Management, Compliance Management, Risk Management and Policy Management.
Cerrix
Cerrix, which is part of the Dutch Artena group, offers a large set of GRC solutions.
Cerrix, which is part of the Dutch Artena group, offers a large set of GRC solutions.
Cura
This young software producer (founded in 2001) specialises on software for GRC.
This young software producer (founded in 2001) specialises on software for GRC.
DoubleCheck
The DoubleCheck GRC&T Enterprise Solution is a risk centric set of key modules that bridge the material requirements of Controls Framework Compliance to GRC Management with Controls Testing administration.
The DoubleCheck GRC&T Enterprise Solution is a risk centric set of key modules that bridge the material requirements of Controls Framework Compliance to GRC Management with Controls Testing administration.
MEGA
Created in 1991 as a spin-off from Cap Gemini, the French company distributes the ”MEGA GRC Suite”.
Created in 1991 as a spin-off from Cap Gemini, the French company distributes the ”MEGA GRC Suite”.
Methodware
The “Enterprise Risk Assessor” is Methodware’s principal GRC product.
The “Enterprise Risk Assessor” is Methodware’s principal GRC product.
Modulo
Module offers integrated GRC solutions with focus on IT GRC.
Module offers integrated GRC solutions with focus on IT GRC.
Neohapsis
Neohapsis acquired Certus, one of several Silicon Valley start-ups focused on Governance and Compliance.
Neohapsis acquired Certus, one of several Silicon Valley start-ups focused on Governance and Compliance.
OpenPages
The OpenPages Platform serves as the foundation for a company’s enterprise risk management efforts and enables GRC.
The OpenPages Platform serves as the foundation for a company’s enterprise risk management efforts and enables GRC.
Oracle
Oracle offers a comprehensive GRC platform.
Oracle offers a comprehensive GRC platform.
QUMAS
The Qumas GRC Suite comprises offerings for complaince content management, process compliance, ERM and visualisation.
The Qumas GRC Suite comprises offerings for complaince content management, process compliance, ERM and visualisation.
RVR Systems
This small French company developed a platform that comprises a variety of GRC solutions.
This small French company developed a platform that comprises a variety of GRC solutions.
SAI Global
SAI Global acquired Australia-based 80-20 Software in 2008. Their focus seems to be more on the service than on the licensing side.
SAI Global acquired Australia-based 80-20 Software in 2008. Their focus seems to be more on the service than on the licensing side.
SpartaSystems
Sparta Systems bundles several applications in its ”TrackWise GRC Solutions”.
Sparta Systems bundles several applications in its ”TrackWise GRC Solutions”.
Trintech
Trintech builds on GRC software from the acquisition of Movaris in 2008.
Trintech builds on GRC software from the acquisition of Movaris in 2008.
"This article is copied and compiled from
" http://www.grc-resource.com
"
" Individuals or concerned organizations
are requested to contact me directly in order to consolidate the removal of
information deemed sensitive or harmful to them"
1 comment:
NICE POST.
SAP Secrity training
oracle sql plsql training
go langaunage training
azure training
Post a Comment