Governance, Risk and Compliance (GRC) Solutions - Business Policy Management

By: Agiliance  09-12-2011
Keywords: Policy Management


Monitoring enterprise wide data, systems, processes, and access requires a set of 'rules' to do business and to comply with government mandates. By having a common set of organizational policies approved by the Board, organizations have a business policy framework that is followed by all employees minimizing enterprise risk while complying with regulations. Interpreting complex, vague regulation mandates and industry standard guidelines and mapping them to organizational objectives is dynamic. Automation of the organization's business policy framework to create a centralized system that maps to best practice frameworks like ISO, CoBIT, ITIL and multiple regulations like PCI, SOX, HITECH, FISMA makes it easier to manage enterprise wide policies, minimize risk and comply with government mandates.


Agiliance RiskVision automates business policy management eliminating redundant policies and redundant processes reducing the total cost of managing policy lifecycles. RiskVision supports full policy lifecycle management including a policy repository for collaborative authoring and review/approval with unique policy workflow assignments for authoring, review, approval, and distribution. RiskVision goes beyond shareware by surgically distributing policies to employees that need to know, eliminating indifferent behavior. Policies are reviewed and distributed based on roles, regions, countries, laws, and standards. Standard templates enforce consistency of verbiage, formats, and formatting and policies are protected by security and workflow configuration on a 'need to participate' basis. Search, version control, change tracking and comparison tools streamline the policy lifecycle where multiple stakeholders simultaneously update the system. Dashboards and reports help gain visibility on policy compliance, attestation, deficiencies, and exceptions.

  • Keywords: Policy Management

    Other products and services from Agiliance


    Governance, Risk and Compliance (GRC) Solutions - Privacy Impact Assessment

    Fourty-six states, including District of Columbia, Puerto Rico, and the Virgin Islands have all enacted breach notification laws.


    Governance, Risk and Compliance (GRC) Solutions - Breach Management

    When a breach is reported, an organization needs to ensure proper incident management procedures are followed, the right stakeholders are alerted and actively involved, documentation is captured throughout the investigation and remediation processes are followed to ensure the proper reporting and documentation are completed post mortem.


    Governance, Risk and Compliance (GRC) Solutions - Continuous Compliance

    RiskVision provides out-of-the-box integration with CMDBs, automatically maps required controls to assets, and dynamically determines asset classification based on asset attributes and configuration. Periodic audit approaches of compliance results in organizations being exposed by leaving failed controls undetected and uncorrected between audit cycles.


    Governance, Risk and Compliance (GRC) Solutions - Project Risk Management

    RiskVision makes it simple to collaborate among program offices, project teams, architecture, security and standards review boards, operations, procurement, finance, and management. In case exceptions are required, RiskVision manages the full exception lifecycle, including request, risk assessment, initial approval, and subsequent periodic re-approval.


    Governance, Risk and Compliance (GRC) Solutions - Actionable Risk

    RiskVision provides risk visibility that is role specific honing in on the right information for the right user, ranging from giving executives a universal risk view to presenting detailed analysis for operational analysts. Highly publicized examples of organizations with poor risk management are all over the news, including well known companies in the financial services, energy, automotive, healthcare, and retail industries.


    Governance, Risk and Compliance (GRC) Solutions - Integrated GRC Applications

    RiskVision is the most proven GRC automation technology with existing production environments with more than 140,000 users, more than 130,000 continuously monitored assets, and over 100 million technical checks performed weekly. RiskVison applications are scalable on a J2EE platform with open interfaces, and designed from the ground up to form a GRC automation platform, compared to consulting tools that have slowly evolved over time.