WHAT’S NEW IN GRC 3.0

Your initiatives’ one-stop shop

All company assets, human resources, technology – you name it – can be affected by risks of all kinds. To prepare for these risks and prevent their occurrence, it is necessary to plan and establish suitable initiatives at an early stage. The latest version of our GRC suite brings exactly the right functionality, to not only properly organize such initiatives – from planning, to set up and start – but also to continuously monitor and control their effectiveness. What is particularly special about it, is the underlying workflow, making the implementation of such initiatives a breeze! All you need to do, is take care of filling in the necessary information – required roles, assigned resources, affected assets, etc. – and decide about the set-up for status reporting and test of effectiveness. Our GRC suite then takes care of the rest, triggering notifications and requesting deliverables automatically, so that your team and colleagues can easily work together and always stay up to date. This way you can rest assured that your initiatives are implemented in the most effective and above all efficient manner.

A picture’s worth a thousand words

In the GRC jungle, it is important to keep track and have a good overview of your risks, especially the ones that are really crucial for you. Since most risks are not managed on an individual basis, but rather grouped and categorized, there are nearly endless ways and possibilities of looking into them and analysing them. As it’s almost impossible for an operation to intimately know and look into the details of every single one of those risks, there’s a need for a smart way to provide a good overview and inform users on an aggregated risk state. Luckily, GRC 3.0 has your back and helps transform this wishful thinking into a reality, by introducing a new Risk Aggregation feature that makes risk gathering as easy as 1,2,3! This new feature facilitates aggregation of the value at risk (based on impact, likelihood and detection) to summarize the current state of a specific dimension, as well as enable reporting to the required level of aggregation in a single click.

Keep your eye on the ball

Everyone knows that risks are simply an inevitable part of every business. However, what sets companies apart and makes one more successful than the other, is their ability to head off, properly manage and respond to risks, once they occur. That’s why GRC 3.0 comes with a brand new Risk Portfolio feature, which does exactly that and makes identifying, assessing and responding to risks a piece of cake! The new Risk Portfolio feature offers flexible, simplistic and visually appealing analyses and reports, that help you evaluate and prioritize risks based on their severity of impact and likelihood to occur. This allows you to stay alert at all times, and not be in the dark about your most crucial risks and their respective states. That way, you are able to plan for potential risks, identify major ones and respond appropriately ahead of time.

What you see is what you get

It is essential for you to know which of your company’s assets are affected by risks, but even more importantly – whether or not controls for mitigating such risks are in place or actually missing. In order to allow all those consuming risk information to immediately get an insight at a glance, we have now introduced a new icon for controls, to complement the already existing risks icon, so that both – the assigned risks and implemented controls – are immediately made visible. Now, when viewing a process, model or asset of any kind, risks or controls can be easily detected and accessed via a direct link from the model. Also, this new feature enables external auditors to quickly check for the correct and consistent documentation of all risks and controls in place.

Exceptions prove the rule

In order to perform risk assessments and control testings, risk/control managers can rely on our automatic workflow routines to put their assets to the test on a regular basis. In order to allow for more freedom and flexibility in these workflow routines, but also to cater for important events – possibly requiring a change to the workflow routine for good, e.g. in case of sick leaves, vacations, certifications or audits – GRC 3.0 now comes with new features to support workflow replanning and improved triggering of manual workflows. This way, workflows can be easily started irregularly or ad-hoc on a need basis, thus being perfectly tailored to fit and follow your individual requirements and business needs.

An experience worth remembering

It is our continued mission to give our all and make your encounter with GRC the bright spot of your day, by delivering a solution which is not only easy and intuitive to use, but more importantly, one that allows you to get the job done as effectively and efficiently as possible. With the drastically sped up performance, the new GRC 3.0 responds to all your commands in a flash. In addition, the way you see and consume your risk information has been optimized through various clever filters, thus allowing you to hide empty attributes and focus on the things that really matter. What’s more, our personalized user dashboards present you with customized and tailored information, that can be sorted and filtered according to your specific needs to provide a fast and direct access to relevant risks, controls, tasks, etc. in just one click! Last but certainly not least, to allow you to address and answer recurring questions in an easy and user-friendly manner, GRC 3.0 offers a set of ready-made views available to you, supporting you in your analysis and reporting activities.