GRC Cornerstones

Governance, risk management and compliance are three distinct disciplines that have generally existed in silos within organisations.

However, many commonalities and interrelationships exist between these three disciplines and so organizations are now looking to manage the associated supporting measures, mechanisms and processes in a coherent way.

This unified approach, known as 'Governance, Risk and Compliance' or 'GRC', is creating efficiencies, supporting seamless and agile management, providing a transparent and holistic view of the organisation and ensuring accountability.

GRC drives commercial benefits that include:

More cost effective use of resources and asset utilization for growth & business flexibility
Improved ability to efficiently analyse & address risks
Improved audit posture and reduced compliance reporting costs

As a result GRC directly impacts the bottom line of the organisation.

Flexeye believes that there are four key cornerstones within this domain, illustrated in the diagram above and described on the right. Or download our brochure for more details.

GRC Communication

GRC dashboarding – The ability to provide a dynamic personalised view of the state of GRC to help support decision making.

Compliance reporting – The ability to roll up compliance reporting in a form that is acceptable to auditors to reduce the cost of compliance reporting.

GRC Control & Policy Management

Controls and policy mapping – The fundamental ability to map an organisation's specific controls and policies into defined control objectives.

Policy distribution and attestation – Supporting the distribution of relevant policies and managing the attestation process.

IT control self assessment and measurement – The ability to create, distribute and manage control assessments in the enterprise.

GRC Asset Management

GRC asset repository – The ability to define IT assets and group them according to the business processes they support and classifying them appropriately.

Automated general computer control collection – The ability to import or directly measure configuration settings, vulnerability, identity auditing information and other GCC control information.

GRC Remediation

Remediation & exception management – The ability to track the life cycle of identified gaps and authorized exceptions.

GRC Applications

Hear from Richie Saville, CTO Flexeye, on how Flexeye are breaking the mould of traditional software development and innovating the process of designing and deploying tailored GRC applications.Watch Video

Case Studies

Flexeye's Engine is licensed by Symantec to support their Executive Intelligence initiative, known as the Symantec Executive Intelligence Dashboard, or 'SEID'. The SEID has been deployed to support GRC initiatives within Global 2000 corporations in both the USA & EMEA.

Executive Intelligence Case Studies
See how we are helping major corporations solve their problems with SEID.
View Case Studies

Symantec Executive Intelligence Brochure
Making IT risk and compliance information relevant to the business.
Download Brochure

Executive Intelligence Online
Full information about SEID functionality and deployment.
View Website