Internal Control System (ICS),
Risk and Compliance Management

Your next generation GRC suite

 

For more than 15 years, our GRC suite has been successfully implemented by our clients. Continuous improvement, full focus on professionalism and comprehensive integration – these are the pillars of our GRC suite, leaving nothing to the imagination! Meet risks and controls sustainably and increase the efficiency, effectiveness and success of your company. From small businesses to large enterprises – build an advantage over your competitors!

Key facts:

15 years of experience
with integrated GRC systems

– BPM, EA, GRC –
Everything under one roof

Best practices

We support you in reaching your goals,
no matter what maturity level you are in

and together with you, we take the optimal path to accomplish your objectives

 

 Comprehensive

from "classic ICS" to workflow-supported GRC ...

 Integrated

... with BPM (ADONIS NP) and EA (ADOIT)

 Transparent

... from data capturing to maintenance to analysis & reporting

 Role-based

... from ICS management to audit and revision

 Unbeatable

Everything under one roof – let information flow transparently between the BOC Group platforms

The GRC suite of the BOC Group

Embedded and integrated with business processes and IT.
Your corporate asset repository.

"There is no other solution I can deeply integrate with BPM and EA while ensuring all content is fully reusable! The synergies are unbeatable."

Erik Guschlbauer,
BOC Group, Service and Innovation Management

GRC 2-Pager

Application scenarios at a glance

 Internal Control System (ICS)

  Asset & Organizational Scoping

 Risk Management

 Risk Assessment

 Compliance Management

 Control Testing

 IT Risk

 Control Implementation

 Procedure Management

 Audit Reporting


The capabilities of our GRC suite - Highly Modular & fitting your professional use cases

Capture risks

Document identified risks using risk catalogues and group them according to internal requirements. A tabular interface allows for easy, intuitive and fast capturing of data.

Organize risks

Take advantage of the opportunities to easily create and maintain risk hierarchies in your catalogues. Thus, redundancies and additional efforts are avoided and a basis for aggregation is created.

Integrate risks with BPM and EA

Link identified risks with your processes, IT assets or business units from the enterprise asset repository and profit from an integrated system on a uniform data basis.

Define role-based access

It is you who decides which information and actions are available to the users. The flexible authorization concept is based on the assignment of roles and allows an individual definition per risk.

Assess risks

Evaluate your risks according to both qualitative and quantitative dimensions that are configured according to your company's needs. Derive controls and initiatives resulting from your forecasts and trends.

Derive controls

Assign the controls from your catalogues (for example according to ISO 27000 or COBIT) to the risks and implementing assets (including processes, IT systems or documents).

Review controls

Review your controls regarding ToD (Test of Design) and ToE (Test of Effectiveness). The results show weaknesses and enable the definition of measures to adapt to the risk appetite of the company.

Carry out controls

Carry out your controls supported by the system and benefit from the centralized and uniform documentation of the results. Related documents (e.g. control documents) can be directly saved and archived.

Define measures

Use your resources effectively and prioritize actions that are directly related to risks and controls. Constant tracking allows to identify requirements for adaptation before any internal and external audits are carried out.

Ensure audit-readiness

Facilitate the audit process! The GRC suite automatically logs any changes to risks, controls and measures to ensure traceability. The resulting audit trail ensures transparency and reduces the effort required for further checks and revisions.

Comprehensive workflows

The integrated workflow engine can be flexibly configured according to your needs. By mapping the assessment procedures in automated workflows, the complexity is reduced and the focus is placed on content-related aspects.

Automate workflows

Request the effective evaluation of your risks and controls in an automated way! The GRC suite handles distribution, monitoring and documentation of tasks in a transparent and up-to-date flow of information.

Automated notifications

In order to increase transparency and traceability, your colleagues are informed and reminded of their tasks via e-mail. The structure and content of the messages can be defined in a company-specific manner.

Personalized dashboards: Tasks

Customized dashboards provide role-specific information to the users. The assigned tasks are presented clearly and intuitively. This clear representation of the UI reduces training efforts and increases significantly the acceptance in the company.

Personalized dashboards: Monitoring

Monitor and review the status of your risks, controls, and measures, as well as their integration in the enterprise asset repository, using intuitive reporting, evaluation, and collaboration capabilities.

Search & find

Browse through the entire Enterprise Asset Repository using keywords. Create, combine, and save multiple queries using options and filters. Use the possibility to directly edit the results.

Analyse & evaluate

Benefit from the numerous graphical analysis possibilities and identify key dependencies. GANTT charts, business impact analyses, matrix or portfolio views are seamlessly integrated and support a structured evaluation of your corporate assets.

Reporting

Prepare information required for audits and certifications with the click of a button! The flexible reporting system allows the individual design of reports and analysis views as well as the further processing of data in common formats.

 Capture risks

Organize risks

Integrate risiks with BPM and EA

 Define role-based access

Assess risks

Derive controls

 Review controls

Carry out controls

Define measures

 Ensure audit-readiness

Comprehensive Workflows

Automate workflows

 Automated notifications

 Personalized Dashboards: Tasks

 Personalized Dashboards: Monitoring

 Search & find

 Analyse & Evaluate

Reporting

GRC Two-Pager

Integrated ICS and Risk Management.
Put GRC successfully into practice.

 LEARN MORE

Business insights

Details and Insights
in our "Audit-ready" video.

WATCH NOW

Demo & Contact

Contact one of our experts and schedule
a guided, personal online demonstration.

CONTACT US

Highly versatile

Multilingual

Comprehensive workflows

 100% web-based

Configurable

Database-based

 100% integrable with ADONIS/ADOIT

Highly flexible authorization concepts

 AD integration / single-sign-on

 Versioning, Historicization, Audit trail

 Professional service and support

An excerpt of our supported standards

 COBIT

 ITIL

 SOLVENCY II

 ISAE 3402

 SOX

 COSO AND COSO II

 ISO 27000

 ISO 31000

 BSI IT-Grundschutz

 ISO 20000

 ISO 9001:2015

 RISKIT

 DSG 2000

 EFQM

 ONR 49000

 ISO 19011

Customers who trust in us

More than 1,000 clients in over 50 countries worldwide – browse through selected customers of BOC Group

"ADONIS and the ADONIS Process Portal are a key success factor in the implementation of our ICS",

Harald Fürlinger,
ICS Manager, voestalpine Group-IT GmbH

 

 Demo & Contact

Contact one of our
experts and schedule
a guided, personal
online demonstration.

CONTACT US

Events More Events

There are no elements

Tools

News

  • 22.09.2017

    BOC Group Listed as a Representative Vendor for ADONIS in the Gartner Market Guide for Enterprise Business Process Analysis for the first time

    Gartner Research lists the capabilities of our BPM suite ADONIS.More

  • 24.08.2017

    Comply with the requirements of the European General Data Protection Regulation (GDPR) with the help of ADONIS and ADOIT

    The European Parliament adopted the European General Data Protection Regulation in May 2016. The implementation period will take two years, which...More

  • 23.08.2017

    Free BPMN Poster by BOC Group

    Get your free personal copy todayMore

Prev Prev

Documents

Download
GRC Poster
Download
GRC 2-Pager
Download
ICS Whitepaper

?

QUESTIONS?

Enrique Lobo Cruz

P +353-1-871 94 16
F +353-1-871 94 17
E info@boc-ie.com