Mar 01 2023

Best GRC tools in 2023

Category: GRC,Security Risk AssessmentDISC @ 1:28 pm

Best GRC tools

GRC (Governance, Risk, and Compliance) online tools are designed to help organizations manage their internal processes, risk assessments, compliance, and audits. Here are some of the best GRC online tools available:

  1. ZenGRC: ZenGRC is a cloud-based GRC tool that offers risk management, compliance management, and vendor management solutions. It allows users to streamline compliance tasks, track risks, and manage third-party vendors.
  2. LogicManager: LogicManager is a GRC platform that helps businesses identify, assess, and manage risks. It offers a variety of modules, including regulatory compliance, vendor risk management, and incident management.
  3. RSA Archer: RSA Archer is an enterprise GRC platform that helps businesses manage risk, compliance, and audit processes. It offers a variety of modules, including risk management, compliance management, and policy management.
  4. SAP GRC: SAP GRC is a suite of GRC tools that helps businesses manage risk, compliance, and audit processes. It offers a variety of modules, including access control, process control, and risk management.
  5. MetricStream: MetricStream is a cloud-based GRC platform that helps businesses manage compliance, risk, and audit processes. It offers a variety of modules, including regulatory compliance, risk management, and quality management.
  6. NAVEX Global: NAVEX Global is a GRC platform that helps businesses manage compliance, risk, and ethics. It offers a variety of modules, including policy management, incident management, and third-party risk management.
  7. Compliance 360: Compliance 360 is a GRC platform that helps businesses manage compliance, risk, and audit processes. It offers a variety of modules, including risk management, compliance management, and incident management.

Each of these tools offers unique features and benefits, so it’s important to evaluate your organization’s specific needs before choosing the best GRC tool for your business.

Cybersecurity Risk and Strategy

Gain the frameworks and vocabulary to make better strategic decisions that boost your organization’s cyber resilience from top to bottom.

ISO 27001/ISO 22301 RISK ASSESSMENT TOOLKIT

InfoSec Threats | InfoSec books | InfoSec tools | InfoSec services

Tags: GRC, GRC tools


Aug 10 2017

Security Management and Governance

Category: GRC,Information Security,ISO 27kDISC @ 9:38 am
  • The textbook for the Open University’s postgraduate information security course.
  • The recommended textbook for all IBITGQ ISO 27001 courses.
  • Available in softcover or eBook format.



Description

Fully updated expert information security management and governance guidance based on the international standard for information security management, ISO 27001.

As global threats to information security increase in frequency and severity, and organisations of all sizes, types and sectors face increased exposure to fast-evolving cyber threats, there has never been a greater need for robust information security management systems.

Now in its sixth edition, the bestselling IT Governance: An International Guide to Data Security and ISO27001/ISO27002 provides best-practice guidance for technical and non-technical managers looking to enhance their information security management systems and protect themselves against information security threats.

This new edition of IT Governance: An International Guide to Data Security and ISO27001/ISO27002 has been fully updated to take account of current cyber security trends and advanced persistent threats, and reflects the latest regulatory and technological developments, including the 2013 updates to ISO 27001 and ISO 27002.

Product overview

Including coverage of key international markets, such as the UK, North America, the EU and the Asia-Pacific region, IT Governance: An International Guide to Data Security and ISO27001/ISO27002 is the definitive guide to implementing an effective information security management system (ISMS), as set out in the international standard ISO 27001.

It covers all aspects of data protection/information security, including viruses, hackers, online fraud, privacy regulations, computer misuse and investigatory powers.

Changes introduced in this edition include:

  • Full updates in line with the 2013 revisions to the ISO 27001 standard and ISO 27002 code of practice.
  • Full coverage of changes to data protection regulations in different jurisdictions and advice on compliance.
  • Guidance on the new continual improvement model that replaces the plan-do-check-act cycle that was mandated in the 2005 iteration of ISO 27001.
  • New developments in cyber risk and mitigation practices.
  • The latest technological developments that affect IT governance and security.
  • Guidance on the new information security risk assessment process.

IT Governance: An International Guide to Data Security and ISO27001/ISO27002 is the recommended textbook for the Open University’s postgraduate information security course and the recommended text for all IBITGQ ISO 27001 courses.