Defining IT GRC | Forrester

December 4th, 2007

Marc Othersen

Khalid Kark

Christopher McClean

With contributors:

Paul Stamp , Michael Rasmussen , Alex Cullen , Craig Symons , Alissa Dill

Summary

IT governance, IT risk management, and IT compliance are three distinct disciplines that in the past have existed in silos within organizations. Today, many organizations no longer see these activities as individual, one-time projects handled in separate parts of the IT organization. Rather, they are finding that there are a lot of commonalities and interrelationships that exist between these three areas. Adopting a unified IT governance, risk management, and compliance (IT GRC) approach and managing the associated activities coherently will create efficiencies, provide a holistic view of the IT environment, and ensure accountability.

Want to read the full report?

This report is available for individual purchase ($1495).

Forrester helps business and technology leaders use customer obsession to accelerate growth. That means empowering you to put the customer at the center of everything you do: your leadership strategy, and operations. Becoming a customer-obsessed organization requires change — it requires being bold. We give business and technology leaders the confidence to put bold into action, shaping and guiding how to navigate today's unprecedented change in order to succeed.