For Security & Risk Professionals

Clearing The Air On IT GRC

    Why Read This Report

    With the vast array of vendors claiming to have IT governance, risk, and compliance (IT GRC) products, the true definition of IT GRC has gotten lost, and security professionals are left confused and uncertain. In an effort to institute clarity, Forrester has defined the interconnected IT GRC life cycles using standards-based frameworks. Vendors that provide products to automate and integrate the functions of these life cycles are considered to be IT GRC vendors, while others are simply exploiting the well-deserved interest and attention in IT GRC to dress up their security products in new clothing.
    US $ 499
    Become A Client

    Get objective, pragmatic guidance that helps you make tough decisions and succeed in a complex world. Contact us to learn more.

    Already A Client?
    Log in to read this document.

    TABLE OF CONTENTS

    • The Need For Clarity In IT GRC
    • The Separate Disciplines Of Governance, Risk, And Compliance
    • The New Relationship Among Governance, Risk, And Compliance
    • Discerning The True IT GRC Vendors From The Pretenders
    • RECOMMENDATIONS

      Define Your IT GRC Requirements First, Then Look For Vendors That Can Help
    • Related Research Documents