SAS Enterprise GRC
SAS Enterprise GRC strengthens governance and trust with systematic management of risk. It detects and helps prevent violations, allowing you to align strategy with risk appetite. The solution builds a reliable view of risk compliance, facilitates collaboration between GRC teams and reduces the cost of risk management through automation. Some Distinctive Features Include: Creates a common and integrated repository of all critical GRC components (e.g., risks, controls, policies, audits, etc.). Facilitates collaboration between various GRC teams, which will be difficult when the GRC components are in multiple systems. Reduces cost of risk management and compliance by reducing duplication of data and processes. Links all critical GRC elements, enabling you to easily visualize and assess the impact of a business decision in one part of the organization over other parts of the organization.
- IT.01 - Audit and Assurance Management
- IT.03 - Brand and Reputation Management
- IT.05 - Compliance Management
- IT.07 - Control Activity, Monitoring, and Assurance
- IT.12 - Finance/Treasury Risk Management
- IT.13 - Fraud and Corruption Detection, Prevention & Mgmt
- IT.16 - Information/IT Risk & Security
- IT.19 - Issue and Investigations Management
- IT.22 - Policy Mgmt, Communication & Training
- IT.24 - Quality Management and Monitoring
- IT.26 - Risk Management
- IT.26 - Regulatory Intelligence and Monitoring
- IT.27 - Strategy, Performance, and Business Intelligence
- A1. Identification
- D1. Detective Actions & Controls
- I1. Info Management
- M1. Context Monitoring
- P1. Proactive Actions & Controls
- R1. Responsive Actions & Controls
- A2. Analysis
- D2. Notification
- M2. Performance Monitoring
- R2. Internal Investigation
- A3. Planning
- D3. Inquiry
- I3. Technology
- P3. Policies
- R4. Crisis Response
- P7. Risk Financing
SAS Enterprise GRC
SAS Enterprise GRC strengthens governance and trust with systematic management of risk. It detects and helps prevent violations, allowing you to align strategy with risk appetite. The solution builds a reliable view of risk compliance, facilitates collaboration between GRC teams and reduces the cost of risk management through automation. Benefits Demonstrates an effective implementation of the GRC framework. Enhances the quality of decision making across the organization. Reduces the likelihood of unpleasant surprises for all stakeholders. Enhances the efficiency and effectiveness of GRC processes. Reduces risk-related losses. Reduces the risk of regulatory compliance violations. Provides more reliable assurance to stakeholders. How SAS® Is Different Creates a common and integrated repository of all critical GRC components (e.g., risks, controls, policies, audits, etc.). Facilitates collaboration between various GRC teams, which will be difficult when the GRC components are in multiple systems. Reduces cost of risk management and compliance by reducing duplication of data and processes. Links all critical GRC elements, enabling you to easily visualize and assess the impact of a business decision in one part of the organization over other parts of the organization.
- IT.01 - Audit and Assurance Management
- IT.03 - Brand and Reputation Management
- IT.04 - Business Continuity Management
- IT.05 - Compliance Management
- IT.07 - Control Activity, Monitoring, and Assurance
- IT.16 - Information/IT Risk & Security
- IT.22 - Policy Mgmt, Communication & Training
- IT.26 - Risk Management
- IT.26 - Regulatory Intelligence and Monitoring
- IT.27 - Strategy, Performance, and Business Intelligence
- IT.28 - 3rd Party/Vendor Risk & Compliance
- A1. Identification
- D1. Detective Actions & Controls
- I1. Info Management
- M1. Context Monitoring
- O1. Commitment
- P1. Proactive Actions & Controls
- R1. Responsive Actions & Controls
- A2. Analysis
- M2. Performance Monitoring
- O2. Roles
- P2. Codes Of Conduct
- R2. Internal Investigation
- A3. Planning
- D3. Inquiry
- I3. Technology
- M3. Systemic Improvement
- O3. Accountability
- P3. Policies
- C4. Objectives
- M4. Assurance
- R5. Remediation
- P7. Risk Financing
Mitratech TeamConnect® Policy Management
TeamConnect manages policies throughout their lifecycle, from creation to retirement, while enabling collaboration and providing accountability in every phase. Proactively protect your organization by reconciling multiple regulations and requirements. Communicate and enforce procedures throughout your organization and beyond. Gain insights into policy violations and assess the impact of new or changing regulations on your business. TeamConnect’s policy lifecycle management approach delivers business agility, efficiency, and effectiveness in meeting requirements. Collaborate on policy creation and improve compliance through a single authoritative source to consolidate, maintain, and manage your policies and procedures. Publish policies enterprise-wide through online Web access. Defend your organization with a detailed trail of all policies and procedures, receipts, trainings, attestations, exceptions, and violations.
- IT.22 - Policy Mgmt, Communication & Training
- I1. Info Management
- P1. Proactive Actions & Controls
- R1. Responsive Actions & Controls
- I2. Communication
- P2. Codes Of Conduct
- C3. Culture
- P3. Policies
- M4. Assurance
Policy Management Strategy Support services
Corporate Integrity helps organizations to define and implement strategies to effectively and efficiently manage and communicate corporate policies and procedures..
DIRECTV GRC ACHIEVEMENT AWARD 2010 PRESENTATION resource Presentation Slides OCEG Reviewed
A presentation about the project for which DIRECTV won a 2010 OCEG GRC ACHIEVEMENT AWARD.
Why is GRC important? blog
I have been blogging about what GRC is, advocating the definition developed by the Open Compliance and Ethics Group, OCEG (see this and subsequent posts). But, I haven’t really talked about why the concept of GRC has value.
LeanGRC™ - Connecting Silos: Lean Information Management resource White Papers OCEG Reviewed
This whitepaper, the fourth in a series devoted to the topic of LeanGRC™, addresses how the key concepts of Lean Production principles can be applied to information management, a key governance, risk management and compliance (GRC) activity.
Risk and Incident Management: Getting the Right Information at the Right Time resource Archived Webinars Member contribution
When an issue is brought forward in a face to face conversation with a manager or HR, how do you ensure the follow up is consistent across your organization? Answer this question and more as you join David Wilber, COO for Eggleston Services, for an in-depth webinar on risk and incident management.
