GRC (Governance, Risk, and Compliance)
| Home > Applications > GRC | Index |
Introduction
The GRC, or Governance, Risk and Compliance app consists of three key areas that include Governance Management, Risk Management, and Compliance Management. Each of these areas are designed in a way that they can used in isolation from each other, but also seamlessly integrate to provide a consolidated view and approach to managing where you stand with risk and compliance.
What's in GRC
The GRC Control Panel provides access and visibility of the the GRC app. This can be accessed from the Hornbill User Client from the left hand application menu. Included in this view are
- GRC Dashboard
- Charts that provide an overview of your policy status, risks, controls, and the status of your audits.
- Governance Management
- Establish policies and controls in order to monitor their implementation by the governing body of an organization
- Risk Management
- Identification and recording of potential risks to the business to reduce or eliminate their financial impact
- Compliance Management
- Track and manage the audit processes that review how well you adhere to the business's standards, regulations, and best practices
- Audits
- Watch Me
Where to Begin
Before starting with the GRC app, there are a number of areas that need to be considered or set up.
Authority Documents vs Internal Policies
Hornbill GRC Manager has the option of using provided Authority Documents, Internal Policies, or both. There are 6 industry Authority Document Templates provided and these can be accessed within Administration. You can also create your own Authority Document.
Authority Documents can be selected when adding or managing Controls within Governance Management.
Before using Policies
- Assigning Users to Roles
- Creating Policy Lifecycles
- Set up Policy Types
- Policy Document Management