ControlCase IT-GRC Platform

Government and industry regulations have steadily increased the demands of organizations to act in an effort to safeguard private information and provide a more trustworthy business environment. However, the frequency and complexity of regulations have placed a huge burden on organizations that, until now, have kept IT organizations in a constant reactive mode.

ControlCase GRC is a consolidated framework that quickly and cost-effectively enables IT governance, risk management and compliance (GRC) with one or several government or industry regulations simultaneously. It allows IT organizations to proactively address issues related to GRC and implement a foundation that is consistent and repeatable. With ControlCase GRC organizations are able to:

• Improve IT Governance
• Accelerate time to compliance
• Reduce and manage risk
• Enable sustained compliance more effectively
• Improve collaboration and consistency
• Bridge information silos
• Align regulatory needs to business requirements
• Lower the cost of becoming and remaining compliant
• Prove compliance

Using a consolidated framework simplifies and automates several key compliance needs that include:

• Workflow automation
• Mapping of standards and controls
• User self-assessment
• Analyzing and testing controls
• Measuring impact to the organization
• Measuring and clarifying risk
• Implementing corrective actions
• Reporting on compliance and risk

ControlCase GRC’s framework is composed of six tightly integrated components to deliver a highly flexible approach to compliance. The components include:

• Web-based user interface
• Workflow engine
• Content and document manager
• Access control
• Data connectors
• Report generator

ControlCase GRC uses compliance and standard specific ControlKits that are predefined and pre-populated best practices to enable compliance. ControlKits are available for several existing mandates and standards including PCI, SOX, GLBA, FISMA , ISO 27001/2, HIPAA. They plug directly into the ControlCase GRC framework. ControlKits are continuously updated to reflect the latest changes or adaptation of regulations to make certain that your compliance objectives are up to date. ControlKits can also be custom built to meet your specific compliance or internal control needs using an existing ControlKit as a basis or designing one from scratch.

Click here to understand the ControlCase GRC architecture.

Based on the regulatory or compliance need, ControlCase GRC is easily customized to your unique business processes and individual requirements. Customization is accomplished via a Web interface, It does not require a programmer or technical resource. Business users are provided with administrative screens and user documentation to create or edit a ControlKit based on your unique requirements.

ControlCase GRC is designed for use by executive management, risk/audit professionals and business process owners striving to become and sustain compliance throughout the regulation lifecycle. It provides instant visibility and tracking throughout the organization to compliance readiness. Click on the screen thumbnails below to view representative product screens.

Screenshots