GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM GRC SUMMIT.

Slides:



Advertisements
Similar presentations
Mercury Quality Center 9.0 Training Material
Advertisements

Supplier Contract Management © 2006 Oracle Corporation – Proprietary and Confidential 2. Author & Negotiate 5. Amend4. Monitor and Track 6. Renew & Closeout.
ICIS-NPDES Plugin Design Preview Webinar ICIS-NPDES Full Batch OpenNode2 Plugin Project Presented by Bill Rensmith Windsor Solutions, Inc. 3/15/2012.
Presentation by Priyanka Sawarkar
Welcome to Online OHS All your OH&S needs in one easy to follow database system.
Presenter Muhammad Tarek Madwar Owner And System Architect
Program Management Portal: Overview for the Client
1 of 61 EHBs v2.0 Overview Health Resources and Services Administration (HRSA) Presented To: Grantees EHBs version 2.0 – Overview for Grantees.
WASTE MANAGEMENT ©2010 SciQuest USA Confidential 1 Powered by RFx User Guide.
Enterprise Content Management Departmental Solutions Enterprisewide Document/Content Management at half the cost of competitive systems ImageSite is:
IQSM Intelligent Quality Security Management Demonstration of features.
Serengeti Tracker Release Update September 12, 2013.
Finance at Microsoft.
CCMDB 7.2.
Request Material Information Use Case Item as created in Optiva. Supplier information request(s) can happen at any time. The same process works for Optiva.
Workflow & Event Derivation Workshop
Sarbanes-Oxley Compliance Process Automation
ProCognis SOX 404 & COSO Implementation Presentation
Workflow & Event Derivation Workshop
Program Management Practice Program Management Portal: Overview for the Client © 2011, 2015 BM Corporation 1.
Click to add text © 2010 IBM Corporation OpenPages Solution Overview Mark Dinning Principal Solutions Consultant.
What is so good about Archie and RevMan 5
Overview of New Behind the Blackboard for Blackboard Customers APRIL 2012 TM.
PROACTIS: Supplier User Guide Contract Management.
GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM GRC SUMMIT.
Electronically approve and create Suppliers in Oracle Financials using a combination of APEX and Oracle Workflow. NZOUG Conference 2010 Brad Sayer Team.
VERSION 7 What’s to Come?. Workflow – Lifecycle Definition  Ability to define custom Lifecycles NEW BEING WORKED IN REVIEW WAITING FOR APPROVAL APPROVED.
©2013, Cognizant Cognizant’s Validated e-Signature Solution.
Employee Central Administration
Rich Desktop Client Overview. Rich Desktop Client - Overview After you download and install SureClinical eTMF (through a link sent in the account activation.
Presenter name. Ryan Brandon Exan Group What’s New with axiUm New Features in axiUm Patient Self-Service Options Future Plans axiUmSupport.com.
© 2007 Cummins Inc. All Rights Reserved. C UMMINS Q UALITY M ANAGEMENT S YSTEM Reports & Charts Training.
COPYRIGHT © 2008 GIDEON TAYLOR CONSULTING. ALL RIGHTS RESERVED GT I-9 Screen Shots – 2008 Saturday, October 03, 2015.
IIS Home Screen (Teacher) Copyright © 2011 Pearson Education, Inc. or its affiliates. All rights reserved.1.
Implementing GL, AP and PO Workflow
© Wiley Inc All Rights Reserved. MCSE: Windows Server 2003 Active Directory Planning, Implementation, and Maintenance Study Guide, Second Edition.
Greta Robertson Kathy Hoffman /11/2011 SCEIS Finance Automated Interfaces.
Module 9 Configuring Messaging Policy and Compliance.
Agenda  Sarbanes Oxley Act  Where to Begin  Creating the Risk Library  Assessments / Audits  Signing Officer  Business Process Owners  Documenting.
Enterprise Service Desk (ESD) Enterprise Service Desk for Notification / Knowledge Article Authors.
QuickSuite VIP-QuickSuite: A Collection of tools designed to adjust to solve your company needs.
The SharePoint Shepherd’s Course for End Users Based on the book by Robert L. Bogue Copyright 2011 AvailTek LLC All Rights Reserved.
Authorized economic operator Minimizing risks, optimizing flows.
Contract Invoice Guide
Oracle’s EPM System and Strategy
Copyright © 2007, Oracle. All rights reserved. Using Document Management and Collaboration Appendix B.
1 Documentation Progression Send To Standard Document Library Document Center – Drop Off Library – Rules Based on Content Type and Metadata routes files.
SharePoint Workflow Prepared By: Eng. Rasha Farouk.
GRC: Aligning Policy, Risk and Compliance
Accurate  Consistent  Compliant Contact: i4i the structured content company the structured content company.
FHA Training Module 1 This document reflects current policy related to this topic. Its content is approved for use in all external and internal FHA-related.
Quality Management System Nov 12, Alfresco QMS QMS - Regulatory Solution Key Industries Pharmaceutical BioTech Manufacturing Regulatory Standards.
1 Managing Learning Assets New Horizons Conference Virginia Community College System Darek Sady Blackboard Senior Consultant April 2006 Roanoke, VA.
Orders and Invoices Supply Chain Platform: Rolls-Royce Training for Indirect Suppliers March 2016.
Copyright © Sumantra Tech Services Pvt. Ltd. All Rights Reserved. PE Front Office Solution.
Important acronyms AO = authorizing official ISO = information system owner CA = certification agent.
Compliance Management System. Intelex System Overview Focus Modules: –Permits Management –Monitoring & Measurement –Training Management –Document Control.
Program Management Portal (PgMP): What’s New in R8 for the Client
Program Management Portal: Request Management, PCRs and the Client
Implementation Specialists Presents
Boeing 787 SCMP Training June 2016
2018 SMU Staff Performance Review Training
CMS Online Version 4.12 March 2019
This presentation document has been prepared by Vault Intelligence Limited (“Vault") and is intended for off line demonstration, presentation and educational.
03 | Basic Admin Capabilities
How to manage approvals in Chrome River
Contract Management Software 100% Cloud-Based ContraxAware provides you with a deep set of easy to use contract management features.
Presentation transcript:

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV MetricStream GRC Summit 2013: Product Showcase ENGAGE | INSPIRE | TRANSFORM → W E L C O M E

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV ENGAGE | INSPIRE | TRANSFORM Aneesh Bhatnagar Associate Director – Product Policy and Compliance Management Aneesh Bhatnagar Policy & Compliance Management

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Agenda 1.Policy Management 2.Compliance Management

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Policy Management

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Topics 1.Policy Management 2.Product Overview: Key Features 3.Policy Development 4.Policy Maintenance 5.Policy Communication 6.Policy Implementation & Enforcement 7.Reports / Dashboards

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM GRC

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM G RC Policy Management helps set the principles/ rules to guide decisions (set the governance objective & procedures) to achieve compliance on these objectives

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Policy Management Determine the Need Develop & Maintain Communicate Implement & Enforce

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects 3.User Configurable workflows

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects 3.User Configurable workflows 4.Audit Trails

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects 3.User Configurable workflows 4.Audit Trails 5.Powerful Policy Search

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects 3.User Configurable workflows 4.Audit Trails 5.Powerful Policy Search 6.Granular Access Controls

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects 3.User Configurable workflows 4.Audit Trails 5.Powerful Policy Search 6.Granular Access Controls 7.Supports for policy management lifecycle

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects 3.User Configurable workflows 4.Audit Trails 5.Powerful Policy Search 6.Granular Access Controls 7.Supports for policy management lifecycle 8.Ability to control the number of copies that can be printed

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects 3.User Configurable workflows 4.Audit Trails 5.Powerful Policy Search 6.Granular Access Controls 7.Supports for policy management lifecycle 8.Ability to control the number of copies that can be printed 9.Automatic conversion of the final policies into PDF along with the header, footer, e-signature & document information

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects 3.User Configurable workflows 4.Audit Trails 5.Powerful Policy Search 6.Granular Access Controls 7.Supports for policy management lifecycle 8.Ability to control the number of copies that can be printed 9.Automatic conversion of the final policies into PDF along with the header, footer, e-signature & document information 10.Sophisticated dashboards to monitor the policy management

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Key features of Policy Management 1.Ability to create Inline as well as Document based policies 2.Ability to link policies/sections to relevant GRCF objects 3.User Configurable workflows 4.Audit Trails 5.Powerful Policy Search 6.Granular Access Controls 7.Supports for policy management lifecycle 8.Ability to control the number of copies that can be printed 9.Automatic conversion of the final policies into PDF along with the header, footer, e-signature & document information 10.Sophisticated dashboards to monitor the policy management 11.MLS enabled

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Create Document based policies Any user defined in the first stage (i.e. the author stage) of the lifecycle can initiate a policy creation process Select the lifecycle and the category/ sub-categories Modify the stage level users. Upload the controlled policy document

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Map it to other GRC Content The author / reviewers can relate a policy with GRCF Objects to set the Policy / Procedures for one or many GRCF Objects

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Review / Approve Document based policy The Reviewers can access the Policy using the View, Download, Print, Upload Privileges Reviewers can select the reviewers of the next stage based on the appropriate privileges Can have ‘n’ number of stages based on how the lifecycle is setup

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Create Inline Policy Create a policy in sections. Each section can relate to a GRCF object All the sections will be exported to Word and the Policy Users will get a complete view of the policy The author can choose to send the section to a reviewer / approver

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Review & Approve Inline Policy Each approver / reviewer will be shown the section that he needs to approve He can choose to approve or reject a section Once all the sections are approved / reviewed, the policy will get published.

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Policy Maintenance Major Change - When an existing policy needs to be changed significantly Minor Change - When an existing policy needs to be undergo a small modification Policy Obsoletion - When an existing policy goes out-of-date

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Policy Maintenance : Upversion Option to change the lifecycle while upversioning the policy

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Policy Maintenance : Change Request Select the Option Change Request. The policy routes through all the stages of the lifecycles and once published will be available to the end users

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Policy Maintenance : Change Request Policies can be obsoleted by initiating the policy Obsoletion process Obsoleted policies are not available to the end users

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Policy Communication After a policy is published, the policy can be sent out for Policy Communication. All the policy users of that specific policy will receive an notification with the link to provide their feedback. The policy users can access the Policy and can either accept or reject the policies The acceptance or rejection of the policy is retained in the system and can be produce as an evidence

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Policy Attestation The Policy users can either accept a policy or Request for exception and provide their comments The attestation information provided by the policy users are available in the policy management reports

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Policy Discovery Policy discovery can be done in two ways Browse – In a windows explorer like tree view Search – Using the search filters

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Reports In-process Policy Documents Report Approved Policy Documents Report Obsolete Policy Documents Report Audit History Report Policy Management Reports

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Audit History

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Dashboards Dashboards for Policies in the lifecycle Published Policies Policy Access Policy Attestations Provides drill down from each of the dashboards to list additional information like the number of people who have not attested, who have already attested etc. with an option to export these details

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Multi Lingual Support

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Multi Lingual Support

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Regulatory Changes

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM GRC Intelligence

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM GRC Intelligence

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Compliance Management

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Compliance Management Policies Regulations AOC Controls Processes Standards Objectives

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Compliance Management Policies Regulations AOC Controls Processes Standards Objectives Functions Assets Questions/ Procedure Evidences Exceptions Financial Account Assertions Auditable Entity

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM ONE F L E X I B L E DATA MODEL

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Flexible Model that helps test NOT just Controls

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Leverages Harmonized Content from GRC Library

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM GRC Library linked to your Policies

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Supports correlation between Controls and Question

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Integrated with Issue and Action Tracking System

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Create Adhoc Tests

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM View Prior Test Results while performing Tests

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Calendar to view Task Schedule

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Upload Test Plans

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM 1.Flexible model that helps test not just Controls 2.Leverages Harmonized Content from GRC Library 3.GRC Library linked to your Policies 4.Supports correlation between controls and questions 5.Integrated with Issue and Action Tracking System 6.Easily create ad-hoc tests and assign to individuals (without creating a full-blown plan) 7.Provides access to prior assessment data while doing the assessment. 8.Calendar to view Tests, Surveys & Certifications 9.Upload Test Plans 10.Out of the Box Reports & Dashboards Summary

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM The Year 2012 What we did

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM 2012… 1.Advanced Testing Framework Enhances planning and scheduling Enables proactive detection of non-compliance Sends Surveys and Certifications to Users, Roles, Control and Process Owners 2.Regulatory Compliance Dashboard Allows the compliance manager to track control failures and sample failures for every Area of Compliance, Type of Area of Compliance and at an Organization level 3.New Reports Failed Test Report Not Tested Report Line Items with key controls with no Test Plan Compliance Status by Organization 4.Data Upload 5.Multi lingual support

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Regulatory Compliance Dashboard

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM SOX Dashboard

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM SOX Report

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM SOX Score Card Total # Of Controls Controls Tested / Not Tested Controls Missing Test Plans Controls Failed / Passed Overdue Tests Issues – Open, Overdue, Closed Total # Of Controls Controls Tested / Not Tested Controls Missing Test Plans Controls Failed / Passed Overdue Tests Issues – Open, Overdue, Closed

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM The Road Ahead 2013

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM The Road Ahead – 2013… 1.Create Requirements from Policy 2.Support for Testing Control Objectives and Standards 3.Test Controls and Process related to Objectives, Standards, Regulations, AOC, Policy etc 4.Integration with PDMS and Surveys Module 5.Link Evidences and Exceptions during Tests 6.Automated Sample Size Calculation 7.SOX Scoping 8.Simplified Self Assessment 9.Mass Reassignment 10.Automated Issue Creation for Failed Tests 11.Remediation Testing 12.Validation Testing 13.Enhanced Reporting and Dashboards

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Test Standard & Objectives

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Add Exceptions to Test

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Attach or Link Evidences

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM View Exceptions and Evidences

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM Test Status Report

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM The Vision 2014 and Beyond

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM The Vision – 2014 and Beyond… 1.Roll over Tests 2.Test Compliance of Products, Projects etc 3.Mind Map Style Visualization of Controls and its connections 4.Simplified Control Testing User Interface 5.Continuous Control Monitoring

GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV © MetricStream, Inc. |All Rights Reserved ENGAGE | INSPIRE | TRANSFORM GRC SUMMIT 2013 Apr 30 - May 1, 2013 | Mandarin Oriental, Las Vegas, NV Q u e s t i o n s a n d D i s c u s s i o n ENGAGE | INSPIRE | TRANSFORM [ Presenter Name ] [ Presenter’s Contact ID ]

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.