ITGC

---

Managing the human dimension of Cyber Security.

	Solution		Features		Solution Lifecycle
ITGC Lifecycle The ITGC lifecycle includes the following steps, all automatically enacted by the ProcessGene™ GRC software Suite: Lifecycle step IT GRC activity ITGC context establishment Definition of related ITGC business processes Delineation of process diagrams (optional) Definition of IT Systems (using EA methods) Standardization and documentation of ITGC related policies and procedures Risk identification and evaluation Risk description, identification of risk stakeholders Risk classification and determination of heat-maps Risk tolerance determination Risk prioritization Control management Definition of controls to mitigate identified ITGC risks Assignment of ITGC control owners Scheduling and monitoring ITGC control execution Assessment of residual risk levels ITGC audits Definition of ITGC audit plans Assign auditors and schedule audit tasks Collection, analysis and storage of ITGC audit results Remediation plan definition, execution and follow-up Event management Collect and document IT related events Assess event implications Amendment of risk assessment and controls according to historical events Data analysis View summarizing dashboards Extract and save user-defined reports Search data using ProcessGene’s robust and user-friendly search engine Multi-Org ITGC Determination of a global ITGC compliance baseline with mandatory components Establishing a workflow for examining local (subsidiary) variants Enforcement of enterprise guidelines, regulations and frameworks within subsidiaries Control ITGC compliance level both locally (per subsidiary) and globally from a central HQ cockpit The ProcessGene™ IT GRC Software Users The ProcessGene™ IT GRC software solution provides value to the following users: C-level management (CEO, CFO, CIO, CRO, COO) Board of directors IT solution architects IT risk managers IT auditors Compliance officers