Governance, risk management, and compliance or GRC is the umbrella term covering an organization's approach across these three areas: governance, risk management, and compliance.
Marketing
enterprise level software has always required the marketer to get a
grip on the market as to the positioning, products, and people of not
only the client, but the community comprised of both technical and
business professionals. GRC is a good example and ITGRC the application.
ITGRC brings together what were once three distinct information technology (IT) disciplines: IT governance, IT risk management, and IT compliance. The ITGRC Forum is where this community comes together and work towards a more unified approach to GRC.
And there are software companies that support GRC such as RSA Archer GRC which "enables an efficient, collaborative governance, risk and compliance program across IT, finance, operations, and legal domains" and is a product of EMC, a global leader in enabling businesses and service providers to transform their operations and deliver information technology as a service (ITaaS).
Risk management involves the following abilities according to the Gartner Group which they use in their Magic Quadrant for IT Vendor Risk Management, which if you don't know about the Magic Quadrant then you aren't into marketing high tech software products and services, so not to worry.
Collaboration
Contract management
Control assessment and monitoring
Deduplication of vendor information
Exception management
History
RACI (responsible, accountable, consulted and informed) documentation
Remediation management
Third-party content delivery
Vendor performance management
Vendor profile management
Vendor risk assessment
I tell this story because the ITGRC Forum followed me on Twitter and I promptly followed them back but could not for the life of me figure out what GRC stood for even though it looked familiar.
Here's an example of a tweet from the ITGRC which only points out how one thing leads to another and what makes marketing enterprise level software interesting and challenging. It's why I liked doing it for years as there was never a dull moment.
No comments:
Post a Comment