Governance Risk and Compliance are not just buzz words. Our real world experience, thought leadership, methods and tools add to your absolute solution for a mature and ongoing program of GRC. SOAProjects’s GRC practice is involved with SIM®, ISACA®, ITSMF® and various organizations focused to audit automation. One way that SOAProjects differentiates our market services in controls assessment, is delivering free tools for IT Regulatory (SOX) reporting that allow reduced dependency on external consulting, retains proprietary knowledge, and lowers volume and time on testing.
Facilitated Compliance Management™
Common Methodology in Delivering A Successful GRC
Every client has unique goals and capabilities. Typical engagements include Policy Baseline, Configuration Management, Control Assessment, Enterprise Risk Management
- Policy Mapping is the Foundation of Actionable, Auditable Control
- RunBooks Identify Expected and KEY Services and Systems, resulting in Establishing a Technology Baseline Supporting Critical Automated Business Controls
- RiskWatch iterates the gap between Policy, Standards and Business Realities
- Assessment Reviews, CMDB – Configuration Management Alignment To Security Policy and Service Standards (such as the selected control frameworks)
Organizations face challenges that drive the need for IT governance:
- Keeping IT running
- Delivering value to customers
- Managing IT costs
- Master complexity
- Align IT with business
- Ensure regulatory compliance
- Manage security
SOAProjects has custom tools that facilitate mapping client policy to ISO, CobiT©, COSO, PCI and various recognized and client specific standards for best practice in Information Security Management. For more information, please refer to documentation found at our Publications page.
SOAProjects is proud to offer accredited courses toward ISACA® Certification in CobiT and Intermediate to Advanced Governance Topics. For more information, please use our Contact form.
For a more technical look at Facilitated Compliance Management™, GRC and SOA, there is training area showing the UML behind our methodology. This section of our web site requires Internet Explorer for full capability. Other browsers will display objects as images. For more information about GRC products, please email us at grc@soaprojects.com or use our contact form.
