|EnterpriseGRC Facilitated Compliance Management - Facilitated Compliance Management by EnterpriseGRC|
Making Process Real, a seminar in preparing to meet new regulations for controls as proposed by the Sarbanes-Oxley Law, was presented by Robin Basham, in Boston, MA 2003, while participating on the board of the Association for Women in Computing. This marked the first use of "Maturity Through Process", and was the basis for preparing ISO 9000 compliant companies to map to their needed SOX CobiT controls. The work was implemented through SamePage Software, which would later be branded "Facilitated Compliance Management". The model would be donated to open source and to this day would remain free.
Over a period of three years (2002 to 2005) this governance and compliance model would evolve to the RunBook UML, presented at OASIS as a "method of participation" in compliance controls. This Unified Model Language seen here has launched numerous off the shelf applications, is documented in the "Perils of Mount Must Read" as a solution to evolving regulations, and provided the baseline to deliver what is one of the world's first published regulatory databases. The entire contents of the Facilitated Compliance Management Source documents database was contributed to the ORCA project at OMG, and later added to supporting knowledge use for the OCEG RedBook V1. The GRC UML (delivered as RunBook UML for the Configuration Management TC) explained relationships necessary to any set of Governance Risk and Compliance Platforms. Where Maturity through process spoke to the observed maturation in enterprise procedures, the GRC UML focusses on the automation of all areas across the enterprise.
Consider one more image on the maturity spectrum. How far along is your company in cloud and virtualization adoption?
|Last Updated on Thursday, 02 August 2012 19:36|
Written by Robin Basham
Sunday, 25 December 2011 00:00
The GRC Buzz
Holistic Information Security Practitioner Institute (HISPI) welcomes EnterpriseGRC Solutions as member of their HISP Certification Board/Committee Read More
ITpreneurs is proud to name EnterpriseGRC Solutions as its newest certified partner. ITpreneurs and EnterpriseGRC Solutions will collaborate to increase Cloud and Virtualization concepts and controls, ISO 27001, COBIT and ITIL courses offered through EnterpriseGRC Solutions. “Every member of my organization has achieved at least one certification through ITpreneurs, and this is the second company that I’ve founded with that same promise. [...] It is a proud day, that we can be a part of ITpreneurs’ landmark efforts to bring forward CompTIA Cloud Essentials training and certification. - Robin Basham, Managing Partner.
Spontaneous Kudos - We've really been digging our digest from The Compliance Exchange
Partners and Client Information
Ryma Technology Solutions names EnterpriseGRC Solutions as an Affiliate Partner. More. Recent Wins: EnterpriseGRC Provides IS0 27001 Policy and SOA readiness for NetSuite Inc. EnterpriseGRC Solutions Sponsor to ISACA ITGI. Recent Partner Alignments include ITpreneurs, Control Solutions International
Request For Information? Please fill out our Wufoo form.