Gartner's 2013 IT GRC Management MarketScope Report articulates the importance and value of IT GRC in facilitating IT and non-IT reporting and decision-making
PALO ALTO, Calif., June 18, 2013 /PRNewswire/ — MetricStream, a leading provider of enterprise-wide Governance, Risk, Compliance (GRC) Management solutions announced today that MetricStream IT GRC Solution received a 'Positive' rating in Gartner's report entitled 'MarketScope for IT Governance, Risk and Compliance Management'.
The Gartner MarketScope report, published June 7, 2013, separates IT operations needs by terming it 'below the line' (includes security and IT operations support functions) and non-IT business needs as 'above the line' (IT centric GRC functions). The report states, "Gartner recommends that organizations seeking IT GRC solutions separate their above-the-line and below-the-line functions. Security operations requirements are likely to be met by a wide range of maturing traditional security solutions, and clients should extend their search beyond the IT GRC tools. However, above-the-line, IT-centric GRC requirements are still best addressed by the vendors in this MarketScope." Another key observation is the potential convergence of IT GRC and E GRC functions and that this differentiation could become irrelevant in the future.
"MetricStream's IT-GRC Solution is empowering information technology and security professionals across the world as they increasingly adopt a holistic, integrated, and enterprise-wide approach to IT risk, compliance, and security," said Gaurav Kapoor, Chief Operating Officer at MetricStream. He continued, "We believe Gartner's 'Positive' MarketScope rating affirms our strong position in the IT GRC market. The breadth and depth of our portfolio of solutions, enables organizations to manage both IT-centric GRC functions as well as IT security and threat related challenges."
MetricStream's IT GRC solution integrates IT GRC processes with enterprise GRC programs, thereby eliminating silos, standardizing processes, and driving collaboration. The solution's integration capabilities extend across an organization's infrastructure, including information security, cloud, and application and business processes. MetricStream solutions are designed to support organizations amidst today's dynamic and complex eco-system and business landscape by better aligning IT and security programs with business risks. Doing so provides a common framework for identifying, analyzing, and acting on IT and security threats and exposures within the context of a holistic IT risk and compliance strategy and governance program. MetricStream IT GRC Solution also integrates with a wide range of regulations, IT standards, harmonized controls, and policy content, including control frameworks such as COBIT, FFIEC, ISO 27001, and NIST, regulations such as Basel II, FISMA, GLBA, HIPAA, NERC, PCI, and SOX, as well as security configuration policies from CIS, FDCC/USGCB, and NIST.
In keeping with its tradition of innovation, MetricStream recently released their enhanced IT GRC Solution, which integrates security and threat data to provide more actionable and valuable intelligence. The new solution release provides security and risk analytics based on Big Data architecture, gathers real-time threat intelligence from social media, monitors virtualized assets in the cloud, facilitates vendor risk management, integrates with NIST and CERT, and also offers support for SCAP standards.
About the MarketScope report
Gartner does not endorse any vendor, product or service depicted in our research publications, and does not advise technology users to select only those vendors with the highest ratings. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.
About MetricStream
MetricStream is a market leader in Enterprise-wide Governance, Risk, Compliance (GRC) and Quality Management Solutions for global corporations. MetricStream solutions are used by leading corporations such as UBS, P&G, Constellation Energy, Pfizer, Philips, BAE Systems, Twitter, SanDisk, Cummins and Sonic Automotive in diverse industries such as Financial Services, Healthcare, Life Sciences, Energy and Utilities, Food, Retail, CPG, Government, Hi-tech and Manufacturing to manage their risk management programs, quality processes, regulatory and industry-mandated compliance and corporate governance initiatives, as well as several million compliance professionals worldwide via the www.ComplianceOnline.com portal. MetricStream is headquartered in Palo Alto, California and can be reached at www.metricstream.com.
Media contact:
Mr. Vinay Bapna
Email
+1 650-620-2955