ca_governance_risk_and_compliance_205292 - Reference Code:...

Info iconThis preview shows pages 1–3. Sign up to view the full content.

View Full Document Right Arrow Icon
Reference Code: TA001649ITM Publication Date: April 2009 Author: Sue Clarke and Somak Roy CA – CA Governance, Risk and Compliance Manager Version 2.0 Published 04/2009 © Butler Group. This Technology Audit is a licensed product and is not to be photocopied Page 1 TECHNOLOGY AUDIT CA Governance, Risk and Compliance Manager Version 2.0 CA BUTLER GROUP VIEW ABSTRACT CA provides CA Governance, Risk and Compliance Manager (GRC Manager), an end-to-end Governance, Risk, and Compliance solution that enables organisations to manage multiple regulatory requirements as well as enterprise risk. The solution focuses primarily on the technical and procedural controls that the IT organisation can undertake in support of enterprise-level regulatory requirements. Large, globally-distributed organisations need to comply with multiple regulations. Without a unified view of risks, the controls that could address multiple risk areas, and all the related information, the organisation runs the risk of effort duplication and not being aware of the plethora of regulations that it is subject to at any given point in time. CA addresses these concerns. It provides a comprehensive content repository of regulations, standards, and best practice frameworks; enables the mapping of controls to multiple regulations; provides project management of all compliance-related initiatives; includes workflow to automate control testing and related activities; and provides extensive reporting features. Overall, an impressive solution that would improve with enhanced integration with CA’s security and systems information management solutions. KEY FINDINGS Partners with the largest risk and compliance consulting providers. Comprehensive content on regulations, policies, and controls. Impressive support for managing risk management-related programmes; solution is based on CA Clarity. Limited support for self-assessment questionnaires. They will be added in the next release. Provides a single view of enterprise risks, mapping controls, policies, and regulations. Provides a Software-as-a-Service (SaaS) version. Business Objects-based reporting. LOOK AHEAD The roadmap includes coverage for enhanced self assessments, audit management, specialised programmes for government and commercial regulations, and automatic control testing.
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
TECHNOLOGY AUDIT CA – CA Governance, Risk and Compliance Manager Version 2.0 Published 04/2009 © Butler Group. This Technology Audit is a licensed product and is not to be photocopied Page 2 FUNCTIONALITY The entire range of processes and activities of an enterprise and its IT organisation, from strategic to operational management, faces risks. While it is impractical to think of completely eliminating risks faced by the organisation, however carefully planned or managed, it is certainly possible to bring the risk down to a level that can be borne by the organisation’s risk appetite. Various national and international standards institutions, regulatory bodies, and individual industry associations have come up with frameworks, methodologies, controls, and best practices guidelines to assist organisations in their efforts to mitigate risk.
Background image of page 2
Image of page 3
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 9

ca_governance_risk_and_compliance_205292 - Reference Code:...

This preview shows document pages 1 - 3. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online