Expertool GRC Accelerator

Expertool GRC Acceleration Improving Time to Value for Enterprise GRC Solutions Enabling Cost Effective GRC Agility E X PERTOOL PARADIGM CAPTURING AND APPLYING HUMAN EXPERTISE

Agenda Introductions The GRC Problem Expertool GRC Acceleration Fit Within GRC Environments GRC Acceleration Project Deliverables GRC Acceleration Project Implementation Next Steps

Expertool Overview Consulting for Fortune 500 and international clients History of innovation Privately held company established in 1996 Unique product developed iteratively to solve real-world problems Successful engagements in variety of sectors and problem domains:

Current State GRC Complexity Source: Expertool Client Presentation Describing Their “Before EM” State 300 analysts 3000+ issues 2500+ SOP documents 20+ groups & divisions Regulatory change is announced! Revised policies, standards, SOP’s and controls developed Impact is assessed Line managers must decide what applies to them and how to implement the change Documented decisions Recommendations, new content delivered Inform vendors Update GRC Application

The GRC Problem GRC involves many experts in many functional areas Best-in-class enterprise GRC platforms* take months or years to implement due to the hidden requirement to build the bridge between the vendor’s solution and the company’s compliance architecture, business taxonomy, practices, procedures, and policies. Once rolled out to segments of the corporate population, GRC content updates require months for the evaluation of alternatives, change impact analysis, governance approval, technical update and testing, and user retraining. *platforms such as Archer, CA GRC Manager, etc.

Expertool GRC Accelerator Expertool GRC Accelerator is a software-enabled service to help company GRC professionals and their consultants better plan, populate, integrate, and operate their GRC solution Our solutions fill the gaps between GRC platforms and complex human activities

Architectural View (Client’s Slide) Source: Expertool Client Presentation Describing Their Architecture Required human tasks optimized, rationalized and centralized Automation requirements defined, tested and centralized Upstream Downstream GRC Tool Expertool GRC Acceleration Support for GRC Content Governance

Architectural View (Client’s Slide) Source: Expertool Client Presentation Describing Their Architecture Required human tasks optimized, rationalized and centralized Automation requirements defined, tested and centralized Upstream Downstream GRC Tool Expertool GRC Acceleration Phase 1: Consolidate/Update Control Set Expertool GRC Acceleration Role: Issue Management Impact Analysis GRC Content Governance Support for GRC Content Governance

Architectural View (Client’s Slide) Source: Expertool Client Presentation Describing Their Architecture Required human tasks optimized, rationalized and centralized Automation requirements defined, tested and centralized Upstream Downstream GRC Tool Expertool GRC Acceleration Phase 1: Consolidate/Update Control Set Expertool GRC Acceleration Role: Issue Management Impact Analysis GRC Content Governance Phase 1: Consolidate/Update Control Set Phase 2: Replace Legacy Platform with COTS GRC Expertool GRC Acceleration Role: Stakeholder Needs and Requirements Analysis Support for GRC Content Governance

Architectural View (Client’s Slide) Source: Expertool Client Presentation Describing Their Architecture Required human tasks optimized, rationalized and centralized Automation requirements defined, tested and centralized Upstream Downstream GRC Tool Expertool GRC Acceleration Phase 1: Consolidate/Update Control Set Expertool GRC Acceleration Role: Issue Management Impact Analysis GRC Content Governance Phase 1: Consolidate/Update Control Set Phase 2: Replace Legacy Platform with COTS GRC Expertool GRC Acceleration Role: Stakeholder Needs and Requirements Analysis Phase 1: Consolidate/Update Control Set Phase 2: Replace Legacy Platform with COTS GRC Phase 3: Add GRC Platform Vendor Content Expertool GRC Acceleration Role: GRC Business Rules Prototyping GRC Content Analysis Support for GRC Content Governance

Architectural View (Client’s Slide) Source: Expertool Client Presentation Describing Their Architecture Required human tasks optimized, rationalized and centralized Automation requirements defined, tested and centralized Upstream Downstream GRC Tool Expertool GRC Acceleration Phase 1: Consolidate/Update Control Set Expertool GRC Acceleration Role: Issue Management Impact Analysis GRC Content Governance Phase 1: Consolidate/Update Control Set Phase 2: Replace Legacy Platform with COTS GRC Expertool GRC Acceleration Role: Stakeholder Needs and Requirements Analysis Phase 1: Consolidate/Update Control Set Phase 2: Replace Legacy Platform with COTS GRC Phase 3: Add GRC Platform Vendor Content Expertool GRC Acceleration Role: GRC Business Rules Prototyping GRC Content Analysis Post GRC Implementation Expertool GRC Acceleration Role: Emerging Threat/Trend Analysis Support GRC Content Governance Support for GRC Content Governance

Features and Benefits Expertool GRC Accelerator empowers the GRC team to rapidly implement and adapt their GRC solution to be integrated with company-specific policies, procedures, controls and with business and IT environments Prior to rolling out or updating their GRC solution, the GRC team can rapidly prototype and evaluate the impact of changes to their control architecture and/or control sets Once understood, analyzed and approved, the control solutions from Expertool GRC Accelerator can directly feed the GRC solution with controls related to control objectives, and grouped into tailored baselines.

Increase Value of Your GRC Solution Reduce Time-to-Value by 50%-80% Populate initial client content from synthesized spreadsheets and system extracts Enable parallel and independent expert activities; integrate and upload results to GRC system Minimize project risk due to schedule coordination Improve agility and effectiveness of GRC solution Minimize political friction for GRC solution sponsor Frontload implementation quality control Speed update cycle to deal with emerging issues

GRC Acceleration Deliverables GRC Architecture and Solution Alignment GRC Content Understanding and Optimization GRC Impact Analysis GRC Content Governance GRC Issue, Emerging Threat, Regulation Evaluation GRC Business Rules Understanding and Optimization Element Deliverables Rules Prototype Environment, Specification for Validated Business Rules Content Understanding Environment, Taxonomy Maps, Content Gap, Optimized Production Content, Feed to GRC Platform GRC Architecture Alignment Environment, Solution Gaps, Implementation Scopes, Issue Management, Key Success Factors, Solution Risks Financial Impact of Change to GRC Architecture or Compliance Environment GRC Content Repository, GRC Content Governance Environment Scenario-Based Analysis Environment

Sample Content Optimization Process Source: Expertool Client Presentation Describing Content Optimization Process SME Performs Relevance Analysis App: Archer Data Migration SME Support Model Saved Spreadsheets SME Performs Equivalence Analysis App: Archer Data Migration Client Content-> Archer Content Model Saved Spreadsheets Expertool Updates Equivalence Model App: Archer Data Migration Client Content-> Archer Content Model Updated Model SME Performs Question Analysis App: Archer Data Migration Client Content-> Archer Content Model with Questions Saved Spreadsheets Extend Equivalence Model with Questions App: Archer Data Migration Client Content-> Archer Content Model with Questions Updated Model Expertool Create Policy Data Output App: Archer Data Migration Client Content-> Archer Content Model with Questions Policy Data for Archer Client Governance Data

Demonstrate Prototype Business Rule GRC Acceleration environment integrates Business Context Regulatory Context Process Expertise Knowledge Data Used in production to validate approach Suggested by some as a great “final” solution

The GRC Acceleration Project Knowledge sources integrated Mappings deduced and suggested Client internal taxonomy and architecture mapped to GRC product taxonomy Client SMEs and consultants analyze and refine mappings in tailored model Client Inputs Previous projects Reports Existing documents System output New Insights Expertise Gaps Business Case Initial GRC OCU GRC Acceleration Key Success Factors Optimized Content Validated Business Rules Impact Analysis Content Governance Environment On-Going Maintenance Continuous Improvement GRC Tool

Key Concepts Expertise Management (EM) a proven management discipline applying cognitive science and complexity theory to business problems Organizational Competence Unit (OCU) the outcome of an Expertise Management initiative delivering continuous value Expertool a cognitive platform for modeling and integrating multidisciplinary human expertise, evolved during real-world engagements

The Value Proposition Enabled by our Unique Technology Lengthy, costly and politically risky group activities Decisions documented, but not all options and views considered Insights that do not support the conclusion are lost Efforts must be repeated if similar issues arise Issues from synthesized documentation channeled to appropriate experts Governance team reviews options and tradeoffs preserved in context Individual expertise is reusable as organizational expertise Time-to-value accelerates as additional knowledge sources are integrated Accelerated: Organizational Competency Unit (OCU) Source: OCEG Presentation Typical: Slow Manual Activities

Expertise Management Initiative Deliverables Expert Application(s) Trained Resources System Integration Process Integration Documentation Package Standard Outcome – Basic Organizational Competence Unit Optional Outcome – Organizational Competence Unit Extensions

Complexity How many potential interactions are there between 100 GRC events? “ Combinational Explosion Complexity” The potential interactions of 100 factors is 1,267,650,600,228,230,000,000,000,000,000

Expertool GRC Accelerator

More Related Content

What's hot

Viewers also liked

Similar to Expertool GRC Accelerator

Expertool GRC Accelerator